Forum Discussion

Sublimeboss31_3's avatar
Sublimeboss31_3
Icon for Nimbostratus rankNimbostratus
Sep 01, 2018

IIS 8 SSL F5 configuration

Several IIS 8 Webservers with valid certificates and windows authentication enabled are placed behind F5 with balancing based on ssl session id. But there is persistent strange behaviour with "serve...
BIG-IP
devops
Kevin_Stewart's avatar
Kevin_Stewart
Icon for Employee rankEmployee
Sep 01, 2018

There are probably two issues here.

 

  • As a general rule, SSL session ID persistence is ineffective for browser-based communications. Modern applications frequently renegotiate TLS sessions, which changes the session ID. For HTTP traffic, the very best persistence method is usually cookies.

     

  • When you say "windows authentication", are you talking about client certificate authentication? And are you not terminating the SSL between the client and the web servers?