For more information regarding the security incident at F5, the actions we are taking to address it, and our ongoing efforts to protect our customers, click here.

Forum Discussion

Misty_Spillers_'s avatar
Misty_Spillers_
Icon for Nimbostratus rankNimbostratus
Feb 14, 2013
Solved

Exchange iapp for multiple Exchange servers (different customers)

I'm on version 11.2.1 and using f5.microsoft_exchange_2010_cas.2012_06_08.     I created an "APM will provided secure remote access" iapp for one of our customers and it worked for the most p...
automation
devops
iApps
management
TMSH
  • mikeshimkus_111's avatar
    mikeshimkus_111
    Jun 19, 2013
    Misty,

     

    This morning I successfully tested deploying two separate Exchange environments behind a single BIG-IP running APM. I can think of at least two features required by this solution that are only available in BIG-IP v11.3 and above, which are the AAA server pool and client-initiated forms SSO.

     

     

    You will also want to use the latest version of the iApp, RC3, which we expect to release in the next day or so. Can you send me a private message on DevCentral with your email contact info? I can let you know as soon as that RC has been declared.

     

    Mike
Misty_Spillers's avatar
Misty_Spillers
Icon for Nimbostratus rankNimbostratus
Jun 19, 2013

I am on 11.2.1 HF5. An upgrade to 11.3 is planned soon.

 

 

Our DNS is good, though it is different agencies, DNS is central and under our control. I have confirmed this through packet captures and remember *only* the SSO on Outlook web access is broken. Active-sync continued to run flawlessly.

 

 

It looks like when you add the second iApp that it garbles the uri of the first iApp SSO. In fact, if you happen to know the correct uri and paste it in once you log in, webmail come right up. Its really specific. I think you were on to something with your first posts but I'm am not knowledgeable enough to fix it once the damage has been done. (other than deleting and recreating)