Forum Discussion
Alexander_01_13
Nimbostratus
Nimbostratusf5 sharepoint tenacious session issue
Good evening!
We are experiencing a security issue with our f5 sharepoint deployment. I have used the iapp f5.microsoft_sharepoint_2010, Software Version is BIG-IP 11.4.1 Build 608.0 Final
...
Alexander_01_13Nimbostratus
NimbostratusHi Mike,
the logout button is not the problem. When user hits logout, the session terminates. BTW I had to implement an iRule to achieve this:
when HTTP_REQUEST {
if { [HTTP::uri] contains "/_layouts/SignOut.aspx" }{
HTTP::redirect "https://[HTTP::host]/vdesk/hangup.php3"
}
}
By which setting can I control the 15 minutes timeout you mention?
Regards, Alexander
- The f5.microsoft_sharepoint_2010 iApp should configure the logout URI automatically for you. No iRule is necessary. Did the template not do that? The session inactivity timeout is set under the Access Profile properties tab.
- Alexander_01_13For SharePoint 2013 I changed the irule: when HTTP_REQUEST { if { [HTTP::uri] contains "/_layouts/15/SignOut.aspx" || [HTTP::uri] contains "/_layouts/15/mobile/authn_signout.aspx" }{ HTTP::redirect "https://[HTTP::host]/vdesk/hangup.php3" } } The logout URI is set, but it will work only if the user hits logout on the root page.
