Last Modified: Nov 07, 2022
See more info
Known Affected Versions:
14.0.0, 188.8.131.52, 184.108.40.206, 220.127.116.11, 18.104.22.168, 22.214.171.124, 14.0.1, 126.96.36.199, 15.0.0, 15.0.1, 188.8.131.52, 184.108.40.206, 220.127.116.11, 18.104.22.168
Opened: Feb 14, 2018
Internal multi-domain SSO does not work when the authentication cookie scope is host.
Internal multi-domain SSO does not work.
SSO configuration is assigned to an access profile for multi-domain SSO, and one of the following: -- There is no SSO configured for the requested authentication domain. -- The request does not map to configured authentication domains.
You can use either of the following workarounds: -- Configure the application cookie scope as 'Domain'. -- Configure the SP-connector sp-location as 'External.
BIG-IP APM can be configured as a SAML IdP to provide inline SSO for SPs not directly reachable by the client. For additional configuration details, see K06743491--Overview of BIG-IP APM SAML inline SSO :: https://support.f5.com/csp/article/K06743491.