For more information regarding the security incident at F5, the actions we are taking to address it, and our ongoing efforts to protect our customers, click here.

Forum Discussion

mikeshimkus_111's avatar
mikeshimkus_111
Historic F5 Account
Aug 10, 2015

Hi Greg, SSO for non-OWA services is controlled by the APM Exchange profile, which is located under Access Policy ›› Application Access : Microsoft Exchange in the GUI.

 

The OWA SSO is selected using the _select_sso_irule created by the iApp. When the rule encounters the OWA URI, it uses WEBSSO::select to pick the forms SSO.

 

Greg_130338's avatar
Greg_130338
Icon for Nimbostratus rankNimbostratus
Aug 10, 2015
Roger. I think that's where I am at at this point. I may just rebuild both iApps and start over. Thanks for the assistance. For the NTLM auth I am now getting auth failures logged on the F5, NO LOGON SERVERS AVAILABLE. this is through the kerberos SSO config. it gives an error, could not verify user (alot of characters). which is followed by a bunch of failed auth errors for my userID. My DC is definitely up and the delegated kerberos account is not locked. Ever seen that before? This was definitely working a few days ago.