Forum Discussion
twalters_94841
Nov 02, 2011Nimbostratus
F5 and WIF
Not quite sure if this is the correct area in which to ask this question, but I'm hoping someone here has some experience with configuring WIF on F5.
I'm attempting to configure a custom Secure Token Service (STS) web site and relying party (RP) web site, each on its own F5, and I'm running into issues getting it working. The F5s (I have no control over these, and am not very familiar with them) are supposedly configured for SSL, and the IIS 7 servers are configured for port 80. The relying party configurations (passive redirect) are all set for SSL (https) and require secure cookies. The FederationMetadata files are all SSL (https). Redirect to the STS is working, but after authentication, the token seems not be getting passed back to the RP, and the redirections them seem to get stuck in an infinite loop. Any thoughts on what might be going on would be appreciated.
Thanks.
-t
- Greg_CowardEmployee
Hi t,
Have you been able to analyze the traffic with HTTPWatch, Fiddler, or something of the like to verify that the STS is providing a cookie with the token to the client and the client is including the cookie when it connects to the service? Additionally, I would check:
- twalters_94841NimbostratusThanks for responding. I was actually able to resolve this. Turns out the web application itself was forcing https. Since we were attempting to run port 80, with encryption/decryption at the F5, it kept getting redirected back out to the F5. We have (temporarily) disabled encryption/decription at the F5 and have configured the web sites for 443.
Recent Discussions
Related Content
DevCentral Quicklinks
* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com
Discover DevCentral Connects