For more information regarding the security incident at F5, the actions we are taking to address it, and our ongoing efforts to protect our customers, click here.

Forum Discussion

Abdessamad1's avatar
Abdessamad1
Icon for Cirrostratus rankCirrostratus
Jul 15, 2014

OWA 2013 SSO failed

hello,

I trying to get OWA 2013 working with the APM, but my SSO configuration i snot working properly. even if the auth with the APM is ok, I still get the login page from the OWA with a "wrong username/password" message. and I get this log :

Jul 15 17:17:40 an03dcadc01 warning tmm6[10031]: 014d0002:4: 47b460e1: SSOv2 Logon failed, config /Common/Exchange_TST.app/exchange_forms_sso form owa

here is my sso config:

apm sso form-basedv2 /Common/Exchange_TST.app/exchange_forms_sso {
    app-service /Common/Exchange_TST.app/Exchange_TST
    forms {
        owa {
            app-service /Common/Exchange_TST.app/Exchange_TST
            request-value /owa/auth/logon.aspx
            submit-javascript clkLgn()
            submit-javascript-type extra
            success-match-type cookie
            success-match-value cadata
            controls {
                password {
                    app-service /Common/Exchange_TST.app/Exchange_TST
                    secure true
                    value "%{session.sso.token.last.password}"
                }
                username {
                    app-service /Common/Exchange_TST.app/Exchange_TST
                    value "%{session.logon.last.logonname} " ; I used this to get the domain in the username
                }
            }
        }
    }
}

Anyone managed to get OWA 2013 working ? I found these articles, but I don't know what I'm missing

https://devcentral.f5.com/questions/exchange-owa-2013-sso

https://devcentral.f5.com/questions/sam-auth-double-prompt-using-exchange-iapp

I used the iApp f5.microsoft_exchange_2010_2013_cas.v1.3.0 for my configuration.

BIG-IP Access Policy Manager (APM)
deployment
devops
iApps
security
No RepliesBe the first to reply