AD Query - APM SAML

Question

I'm just fiddling around in our lab F5 and trying to get the F5 (IDP) to authenticate a user based on credentials grabbed using the windows inspector (currenty logged on user)&nbsp;
I'm at the point where I was able to assign the user to a session variable however; how do I go about querying AD against the session variable which now hold the currently logged in user that I grabbed from the windows inspector and retrieve attributes such as email address etc..?&nbsp;
The reason I'm doing this is the SP requires the email address for the saml insertion and not the username&nbsp;

michael_koyfma1 · Answer

Just do AD Query - that is it. If the user session variable is populated, it will automatically query AD for attributes of that username(samaccountname by default, i assume you should be fine there, else you can put in search filter in the AD Query).

1tuh3_243099 · Answer

Ok maybe the simplicity is what is throwing me off, I thought I would of had to pass my custom variable in the searchfilter because the user session variable is not populated&nbsp;
For example &nbsp;
session.customvar is populated with jsmith &nbsp;
in the searchfilter in AD Query would the following work (typing this out on my mobile)&nbsp;
%{session.customvar} &nbsp;

moureg16 · Answer

I’m working on using F5 as a SAML idP and I need to emulate a SaaS as SP.
I faced a lack of knowledge a round related to how to create such lab “the application demo” to use it as a SP&nbsp;

Forum Discussion

AD Query - APM SAML

3 Replies

Recent Discussions

import live updates from version x to version y

Tenant image upgrade

iRule editor partition button does not work

F5Access | MacOS Sonoma

Overwriting or adding LTM SSL Traffic cert and key using iControlREST

Related Content

APM Cookbook: SAML IdP Chaining

APM Cookbook: AutoLaunch SAML Resources

APM as Saml IDP with many SP

Pool downtime query

APM SAML IdP - SP Issuer Extraction