Office365 SAML IdP Configuration

With F5 APM specific URL examples.

cstubbs
July 14, 2015
Path to certificate file

Description of your organisation

FQDN for your organisation, e.g. organisation.tld

URL to SAML IdP logon service, e.g. "https://idp.org.tld/saml/idp/profile/redirectorpost/sso

URL to logout service (not necessarily SAML IdP controlled), e.g. https://idp.org.tld/saml/logoff

$cert = New-Object System.Security.Cryptography.X509Certificates.X509Certificate2("%{CERTIFICATE}%")
$certData = [system.convert]::tobase64string($cert.rawdata)
Set-MsolDomainAuthentication –DomainName %{DOMAIN}% \
–FederationBrandName %{BRAND_NAME}% \
-Authentication Federated \
-PassiveLogOnUri %{LOGON_URL}% \
-SigningCertificate $certData \
-IssuerUri ${IDP_ID}% \
-ActiveLogOnUri %{LOGON_URL}% \
-LogOffUri %{LOGOUT_URL}% \
-PreferredAuthenticationProtocol SAMLP