Last Modified: Jul 11, 2024
Affected Product(s):
BIG-IP APM
Opened: Apr 29, 2024 Severity: 3-Major
APM SAML IdP locates the external SAML SP connector matching 'EntityID' from configuration and 'Issuer' from SAML SLO request. This implementation may fail if an external SAML SP configures all its SAML SP objects with the same 'EntityID' and some of them initiates the SAML SLO.
SAML SLO fails
-- APM deployed as SAML IdP -- Several external SAML SPs federated with APM SAML IdP -- SAML SP initiates SAML SLO
None
None