Forum Discussion

Altostratus

Aug 14, 2017

APM with ADFS + Extended Protection

Hello, I am trying to implement F5 as a load balancer for an ADFS server farm. It works well if SSL connections from clients to ADFS are tunneled thru F5 without decryption. However if I enable SSL b...

BIG-IP

BIG-IP Access Policy Manager (APM)

security

Jad_Tabbara__J1

Cirrostratus

Aug 15, 2017

Hi,

In our case, we are terminating SSL connections on the BIG-IP and the "ExtendedProtectionTokenCheck" is set to "none". I think It wont work otherwise !

Also we encounter another issue with the ADFS "protection" feature when it was enabled. Browsers other than IE, were unable to make SSO (Chrome) as described by this discussion

https://social.technet.microsoft.com/Forums/en-US/6948e92d-1789-480d-99c1-08ee94a522cd/adfs-3-server-2012-r2-and-chrome?forum=winserverDS

Regards

Help guide the future of your DevCentral Community!

What tools do you use to collaborate? (1min - anonymous)