Manel_Mendoza_1
Nov 17, 2015Nimbostratus
Diferent Policies Bracnhes based on SAML request
Hi,
I would like to have an idp for a multiple SP (Sp1, and SP2) . The connection is SP initiated to the idp. For security reasons SP1 and SP2 need diferents policies to verify the user..
Instead of create differents idp, we would like ( if it's possible ) to make diferents branches on the policy based on the SAML autentication request like ProviderName or AssertionConsumerServiceURL.
I dont' know exactly how to write the irule and how to get the variables from the SAML request.
THe idea could be.
VS ( idp ) ==> { ACL irule } if ( AssertionConsumerServiceURL = SP1 ) ==> polici for SP1 if ( AssertionConsumerServiceURL = SP2 ) ==> polici for SP2
Thanks in advance