Is there any best practice guide to implement F5 Big-IP SAML authentication instead of ADFS setup for Office365 SSO?
As per F5 documentation (as below), we can completely eliminate ADFS infrastructure by using F5 SAML authentication, however I am not sure what are the pros & cons, and limitations by using F5 SAML for SSO authentication.
"Available with version 11.3, APM includes fullSAML support. This allows the BIG-IP to not only authenticate the client connections with Active Directory, but act as the IdP or SP in the federation process. No longer will an organization be required to deploy an ADFS infrastructure for federation. Rather, the BIG-IP’s role as an application delivery controller is expanded out to include cloud-based resources, (including Office 365), as well as on-premise applications."
Any help to make better understanding F5 pros and cons is much appreciated.
Thanks
Tek-Nerd