You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Copy file name to clipboardExpand all lines: articles/active-directory/manage-apps/f5-big-ip-ldap-header-easybutton.md
+3-3Lines changed: 3 additions & 3 deletions
Display the source diff
Display the rich diff
Original file line number
Diff line number
Diff line change
@@ -57,7 +57,7 @@ SHA for this scenario supports SP and IdP initiated flows. The following image i
57
57
58
58
Prior BIG-IP experience isn't necessary, but you need:
59
59
60
-
- An [Azure free account](https://azure.microsoft.com/free/active-directory/), or above
60
+
- An [Azure free account](https://azure.microsoft.com/free/active-directory/), or a higher-tier subscription
61
61
- A BIG-IP or [deploy a BIG-IP Virtual Edition (VE) in
62
62
Azure](./f5-bigip-deployment-guide.md)
63
63
- Any of the following F5 BIG-IP license SKUs:
@@ -292,11 +292,11 @@ What isn’t covered is Single Log Out (SLO) functionality, which ensures sessio
292
292
293
293
The SAML federation metadata for the published application is imported from your tenant, which provides the APM with the SAML sign out endpoint for Azure AD. This action ensures an SP-initiated sign out terminates the session between a client and Azure AD. The APM needs to know when a user signs out of the application.
294
294
295
-
If the BIG-IP webtop portal is used to access published applications, then a sign out is processed by the APM to call the Azure AD sign-out endpoint. But, consider a scenario wherein the BIG-IP webtop portal isn’t used. The user can't instruct the APM to sign out. Even if the user signs out of the application, the BIG-IP is oblivious. Therefore, consider SP-initiated sign-out to ensure sessions terminate securely. You can add an SLO function to an application Sign-out button, so it can redirect your client to the Azure AD SAML or BIG-IP signout endpoint. The URL for SAML sign-out endpoint for your tenant is in **App Registrations > Endpoints**.
295
+
If the BIG-IP webtop portal is used to access published applications, then a sign out is processed by the APM to call the Azure AD sign-out endpoint. But, consider a scenario wherein the BIG-IP webtop portal isn’t used. The user can't instruct the APM to sign out. Even if the user signs out of the application, the BIG-IP is oblivious. Therefore, consider SP-initiated signout to ensure sessions terminate securely. You can add an SLO function to an application Sign-out button, so it can redirect your client to the Azure AD SAML or BIG-IP sign-out endpoint. The URL for SAML sign-out endpoint for your tenant is in **App Registrations > Endpoints**.
296
296
297
297
If you can't make a change to the app, then consider having the BIG-IP listen for the application sign-out call, and upon detecting the request have it trigger SLO. Refer to the [Oracle PeopleSoft SLO guidance](./f5-big-ip-oracle-peoplesoft-easy-button.md#peoplesoft-single-logout) to learn about BIG-IP iRules. For more information about using BIG-IP iRules, see:
298
298
299
-
*[K42052145: Configuring automatic session termination (log-out) based on a URI-referenced file name](https://support.f5.com/csp/article/K42052145)
299
+
*[K42052145: Configuring automatic session termination based on a URI-referenced file name](https://support.f5.com/csp/article/K42052145)
300
300
*[K12056: Overview of the Log-out URI Include option](https://support.f5.com/csp/article/K12056)
0 commit comments