Cory_Blankenshi
May 24, 2018Altostratus
SAML, APM, and F5 in the middle
We have an internal OAM identity provider and a new external application that will act as the service provider. When users login to this application, they will need to go through APM. I have been asked to build a solution whereby the OAM IdP will still handle the SAML federation with APM still in play.
Has anyone had to implement a solution similar to this? We are required to use the OAM IdP and the external SP, so my initial thought was to do something like the following:
- Set up an APM IdP to talk to the new app's SP
- Set up an APM SP to talk to the OAM IdP
- Set up the APM IdP to talk to the APM SP
I'm not sure if that would actually work, but due to the requirements, that's about the only way I thought it could be done.
Thoughts?