Forum Discussion

Nick_Myers's avatar
Nick_Myers
Icon for Nimbostratus rankNimbostratus
Aug 07, 2018

APM SAML IdP for Office 365

Hi,

 

I have followed the guide Configuring the BIG-IP APM as a SAML 2.0 Identity Provider for Microsoft Office 365 and used the iApp to set this up so get this working.

 

We have a problem when trying to sign into 365, we get directed to the F5 login page and credentials are accepted. Then we get redirected back to Microsoft but get the following error:

 

requested federation realm object does not exist

 

Has anyone successfully managed to configure the F5 as an IdP for Office 365 or seen this error before?

 

From what I can see we are passing the correct assertion when I examine the SAML ticket.

 

Thanks

 

1 Reply

  • Maybe a mismatch between the issuer that is set in o365 and the issuer as set as the Entity ID in the BIG-IP. They need to be an exact match. Most common mistake is to include the trailing slash in one place and not the other.

     

    Verify the IssuerUri by entering this code into Azure PowerShell:

     

    Get-MsolDomainFederationSettings -DomainName