Forum Discussion

Nimbostratus

Jan 21, 2015

Solved

Kerberos SSO without APM?

Hi, I have a question regarding Single Sign-On with kerberos. I have a pair of Virtual BigIPs on a Viprion-System running in Active/Standby. The systems are connected one-armed and therefor...

application delivery

BIG-IP Access Policy Manager (APM)

design

LTM

security

Michael_Koyfman
Jan 21, 2015
This has nothing to do with F5, but rather with the way Kerberos works. Here is an example of a great old article that talks about how to resolve this issue: http://blogs.technet.com/b/askds/archive/2011/08/09/kerberos-and-load-balancing.aspx

Arnaud_Lemaire

Employee

Jan 21, 2015

Hello Thorsten, this should be working, when passing through the big-ip do you have a different FQDN ? when you try with one membre only in the pool is this working ? ultimetly it could be interresting to start looking at the client side information, with a browser tool to see user's requests/response.

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5

Forum Discussion

Kerberos SSO without APM?

Jonathan - March 2026 Featured Member

F5 AppWorld 2026 Las Vegas - iRules Contest Winners!

2026 F5 DevCentral MVP Announcement

Recent Discussions

Geo location update

Help with an iRule to disconnect active connections to Pool Members that are "offline"

block a specific user

ASM/AWAF declarative policy

OOB Security Notification — Why you should patch NGINX Plus/Open Source now

Related Content

APM Cookbook: Single Sign On (SSO) using Kerberos

Troubleshooting Kerberos Constrained Delegation: Strong Encryption Types Allowed for Kerberos

Transparent Kerberos Authentication and APM fallback authentication

APM Kerberos Auth or fallback to another authentication method

Configuring Smart Card Authentication and Kerberos Constrained Delegation in F5 Access Policy Manager (APM)

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS