F5 is upgrading its customer support chat feature on My.F5.com. Chat support will be unavailable from 6am-10am PST on 1/20/26. Refer to K000159584 for details.

Forum Discussion

Davo_T_20783's avatar
Davo_T_20783
Icon for Nimbostratus rankNimbostratus
Mar 30, 2014

APM SSO config using Kerberos to Weblogic backend not supplying session id cookie on post authentication requests

Hi,   We have constrained delegation and kerberos authentication working using APM 11.2.0, however once authenticated, subsequent request the JSESSIONID is not being supplied in the F5 request to ...
BIG-IP Access Policy Manager (APM)
design
security
Kevin_Stewart's avatar
Kevin_Stewart
Icon for Employee rankEmployee
Mar 31, 2014

Just curious, but do you have an iRule or other logic applied that controls the production of a JSESSIONID cookie? The presence of a JSESSIONID cookie is not usually related to Kerberos, and is an application-specific thing. Kerberos uses an Authorization header in the request, which the SSO would produce. But a JSESSIONID cookie would need to be set by the server and received and relayed by the client.