Last Modified: Oct 06, 2020
Opened: Dec 03, 2013
Related AskF5 Article: K15768
SAML single log out (SLO) does not work if the NameID value in the SAML Assertion contains spaces. If you use a value with a space, you receive errors
SLO does not work and you receive errors.
Using a space in the NameID value.
If the NameID value includes a space, then URL encode the space to %20. Type %20 in place of space into the Assertion Subject Value field. You configure this field when the BIG-IP system acts as a SAML Identity Provider (IdP) and you are configuring a Local IdP Service and setting Assertion Settings for it.