Forum Discussion

Nimbostratus

7 years ago

IIS 8 SSL F5 configuration

Several IIS 8 Webservers with valid certificates and windows authentication enabled are placed behind F5 with balancing based on ssl session id. But there is persistent strange behaviour with "serve...

big-ip

devops

Kevin_Stewart

Employee

7 years ago

There are probably two issues here.

As a general rule, SSL session ID persistence is ineffective for browser-based communications. Modern applications frequently renegotiate TLS sessions, which changes the session ID. For HTTP traffic, the very best persistence method is usually cookies.
When you say "windows authentication", are you talking about client certificate authentication? And are you not terminating the SSL between the client and the web servers?

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5

Forum Discussion

IIS 8 SSL F5 configuration

SSO Login Update Coming to DevCentral

Kevin - June 2026 Featured F5er

Tyler - May 2026 Featured Member

Recent Discussions

ASM attack signatures not syncing between active and standby F5

Query on source IP preservation for syslog traffic through F5 virtual server

Hardware BIG-IP appliance reach EOSS, but the software version running on it not yet?

VPN Communication Error with F5 BIG-IP Edge Client

simultaneous disabling / enabling of all LTM objects

Related Content

wccp configuration for SSL Orchestrator

Implementing SSL Orchestrator - Guided Configuration

F5 BIG-IP SSL Orchestrator Configuration with Advanced WAFaaS

Implementing SSL Orchestrator - F5 TMOS Configuration

LTM Policy Recipes II

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS