It would seem that for just about every other IdP out there there is detailed information for configuration SSO with AWS however I have really struggled to find detailed information on this for F5 APM.
Does anyone have any experience doing this? Getting the basic configuration done is not at all difficult, however when it comes to mapping AD Groups to AWS roles it is difficult to see how to do this in APM. Other IdP's such as ADFS and Shibboleth have options to transform LDAP queries to AWS roles but I have not found anything similar in APM.
If anyone can point me in the right direction that would be great.
I know this is a little late but take a look at https://devcentral.f5.com/articles/configuration-example-big-ip-apm-as-saml-idp-for-amazon-web-services and let me know if you have any questions.
I’m working on using F5 as a SAML idP and I need to emulate a SaaS as SP.
I faced a lack of knowledge a round related to how to create such lab “the application demo” to use it as a SP