I'm trying to integrate F5 with Okta following the guide provided by Okta. I can't seem to get this to work. My scenario is as follows:-
I have on on-premise legacy application (Dynamics CRM 4.0) that sits behind the F5's. Users authenticate with their AD credentials. I've setup the AD Agent in Okta and Synced the accounts (profile mastered in AD). I test the delegated authentication and it's successful. I've also setup the application in Okta (as per guide) with a rule to use MFA at each login. F5 has BigIP as SP service configured with IDP from metadata.xml. Access profile has been setup using SAML Auth and then associated to the Virtual Server.
Here's what happens...
I go to the URL and get redirected to Okta sign-in page; I sign-in successfully with MFA, but when redirected to my application URL, it goes into a loop (back and forth between the two) - then stops at Okta MFA page.
I complete the MFA again and it loops again and comes right back there. The loops repeat roughly 6-10 times.
Hi Vikash, this still sounds like a configuration issue. If it's not resolved, you might like to file a support ticket on this one. You can do this via you Okta Admin Console, by going to the "Support & Training" link, and then select the option in the top right hand corner to "Open a Case".