F5 is upgrading its customer support chat feature on My.F5.com. Chat support will be unavailable from 6am-10am PST on 1/20/26. Refer to K000159584 for details.

Forum Discussion

mongrol_63460's avatar
mongrol_63460
Icon for Nimbostratus rankNimbostratus
Nov 04, 2008

ldap/ with kerberos through F5

Hi,   We have an F5 BigIP load balanced address fronting a few Domain   Controllers in our AD (e.g. adldap.domain.com). We have OpenLDAP clients   using this Virtual address to do looku...
microsoft
partner
Will_F_98397's avatar
Will_F_98397
Icon for Nimbostratus rankNimbostratus
May 04, 2009
I've done a similar thing with some WCF/SOAP applications requiring Kerberos tickets/authentication, created a DNS name referencing the virtual server IP Address in active directory DNS and then assigned a SPN using this DNS entry. The SPN would be that of the DNS entry.

 

 

There's a link on the microsoft website which explain's using IIS and Load Balanced environments, very similar setup I would assume.

 

 

http://technet.microsoft.com/en-us/library/bb633031.aspx

 

 

Also checkout 'Troubleshooting Kerberos Delegation' I found this a useful document.

 

 

Running BigIP 9.3.1