Forum Discussion
Thompso7540_201
Nimbostratus
NimbostratusAPM logon page redirect loop
When i connect to my vserver using APM, i recieve the below message.
Your session could not be established.
BIG-IP can not find session information in the request. This can happen because your browser restarted after an add-on was installed. If this occurred, click the link below to continue. This can also happen because cookies are disabled in your browser. If so, enable cookies in your browser and start a new session.
Thank you for using BIG-IP.
To open a new session, please click here.
clicking 'here' just redirect loops back to this page over and over. I've cleared the sessions and even rebooted the bigip, and i get the same thing.
any ideas?
thanks,
kunjanCheck the cookie settings under the access policy configuration. Uncheck 'Secure' if it's not an SSL page.
Haroon_Ahmed_28That worked for me. Can you explain in more detail why this has fixed the issue ?
Hi Harmon,
The following article describes the secure cookie feature in some detail.
kunjan_118660Cumulonimbus
Check the cookie settings under the access policy configuration. Uncheck 'Secure' if it's not an SSL page.
- Haroon_Ahmed_28
That worked for me. Can you explain in more detail why this has fixed the issue ?
Hi Harmon,
The following article describes the secure cookie feature in some detail.
- Thompso7540_201
Tried that and same thing. This is SSL.
Stanislas_Piro2Do you try with fqdn or IP? Did you configure a domain name in Cookie / SSO of your access profile?
If you specified a domain name, you must try with a request host name in the same domain.. not an IP address.
- Thompso7540_201
I'm not getting the error anymore, but it might be because i left it over the weekend and something cleared out. I'm using fqdn. Does the domain name in that box have to be just the domain name or my company's AD domain, e.i, .company.com vs. admin.company.adm? They are different for us.
thanks,
- Stanislas_Piro2
the domain name is the one sent by APM with session ID. if you specify the domain is company.com, the following header will be send by your APM Set-Cookie: MRHSession=a5978aebdc25a9436b7dd3eda381834f; domain=company.com;path=/;secure
The browser will send this cookie only if the target URL match the domain of it:
- test.company.com will match
- test.demo.company.com will match
The secure parameter of the cookie specify that the browser will send the cookie only on SSL URLs and not on HTTP URLs. This cookie will be sent to every URL matching domain name... even if the web site is not protected by the APM.
Domain AD or company AD... it depends of the APM usage...
- Walter_Kacynski
Cirrostratus
I've had this happen when the server.landing.uri session variable does not get properly reset for the new Session.
