Forum Discussion
mbuenrostro_182
Nimbostratus
NimbostratusExchange 2013 CAC authentication error
I built a node on an internal VLAN in my network that serves as my 2013 Exchange CAS. I created a Virtual server on the F5 (using the iapp.microsoft.exchange2013.v1.40) with an external IP whose po...
mbuenrostro_182Nimbostratus
NimbostratusWe have a forward zone where the FQDN of the virtual server is tied to the Virtual Server IP. The FQDN of the OWA node is associated with our internal network DNS. The Virtual server sits on the F5's external vlan. The owa node sits on the F5's internal vlan. The owa can be accessed by external users if username/password is used. Once a CAC pin is used, I get "page cannot get displayed". If I use my CAC authentication from our internal network, and by reaching the virtual server, I do have access to the OWA. I just read a disa white paper on header insertion where the virtual server has an irule inserted in the header "The BIG-IP proxy utilizes a custom HTTP header to insert the CAC certificate info"
Do you think that might be it the issue?
I have never heard of that iRule. You may want to get a case open with F5 support on this. They can help you upload your config to iHealth and get traffic captures which we can check out.