juajua_377157
Nimbostratus
Apr 16, 2019SAML authentication + SSO
I'm trying to build a SAML gateway that would authenticate users from different ADFS/SAML IdPs and then forward the request to a pool with some kind of SSO. I've manged to configure BIG-IP with SP role, and have it use different IdPs depending on the URL. If the client is forwarded to https://hostna.me/corp1 it gets forwarded to Corp1 ADFS, and /corp2 authenticates users against corp2 IdP. I get the username to session.logon.last.username, but I'm wondering what's the best way to forward this info to the back end web servers? And how to do that in access policy editor?
Is it also possible to get client redirected to https://hostna.me instead of having the /corp1 or /corp2 as part of the URL.
Thanks!