Forum Discussion

Altostratus

Aug 15, 2017

APM with ADFS + Extended Protection

Hello, I am trying to implement F5 as a load balancer for an ADFS server farm. It works well if SSL connections from clients to ADFS are tunneled thru F5 without decryption. However if I enable SSL b...

BIG-IP

BIG-IP Access Policy Manager (APM)

security

Jad_Tabbara__J1

Cirrostratus

Aug 15, 2017

Hi,

In our case, we are terminating SSL connections on the BIG-IP and the "ExtendedProtectionTokenCheck" is set to "none". I think It wont work otherwise !

Also we encounter another issue with the ADFS "protection" feature when it was enabled. Browsers other than IE, were unable to make SSO (Chrome) as described by this discussion

https://social.technet.microsoft.com/Forums/en-US/6948e92d-1789-480d-99c1-08ee94a522cd/adfs-3-server-2012-r2-and-chrome?forum=winserverDS

Regards

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5

Forum Discussion

APM with ADFS + Extended Protection

F5 Academy at AppWorld 2026

Aswin MK - November 2025 Featured Member

Introducing the F5 AI Assistant for BIG-IP

Recent Discussions

Big-IP LTM integration with Big-IP DNS in Azure

Cannot ping external interface

HA Failover between two Datacenters

What does session_id = 0 means in ASM session tracking?

Extend capacity of the blade on Velos

Related Content

Extending F5 ADSP: Multi-Tailnet Egress

Extend visibility - BIG-IP joins forces with CrowdStrike

L7 DoS Protection with NGINX App Protect DoS

F5 API Security: Discovery and Protection

NGINX App Protect v5 Signature Notifications

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS