F5 is upgrading its customer support chat feature on My.F5.com. Chat support will be unavailable from 6am-10am PST on 1/20/26. Refer to K000159584 for details.

Forum Discussion

Davo_T_20783's avatar
Davo_T_20783
Icon for Nimbostratus rankNimbostratus
Mar 30, 2014

APM SSO config using Kerberos to Weblogic backend not supplying session id cookie on post authentication requests

Hi,   We have constrained delegation and kerberos authentication working using APM 11.2.0, however once authenticated, subsequent request the JSESSIONID is not being supplied in the F5 request to ...
BIG-IP Access Policy Manager (APM)
design
security
Davo_T_20783's avatar
Davo_T_20783
Icon for Nimbostratus rankNimbostratus
Apr 06, 2014

Looks like it may be an APM problem. Support ticket raised with F5 and issue has been reproduced, now waiting for further investigation.

 

daboochmeister's avatar
daboochmeister
Icon for Cirrus rankCirrus
Feb 12, 2015
Has there been further news on this? I appear to be experiencing the same issue ... though in our case, the JSESSIONID doesn't make it to the client even if we have a basically empty APM policy, no kerberos, not even any authentication involved. In fact, we go through 2 layers of F5 - an external tier running APM which proxies to an internal F5, which proxies to the real servers - and the JSESSIONID is in fact returned by the internal F5, it gets swallowed by the external F5 running APM, apparently.