Forum Discussion

Nimbostratus

Jun 02, 2015

Problem with EWS using iapp template 1.40 for Exchange

I have an 11.5.1 LTM hosting Exchange with the 1.4.0 Exchange/CAS iapp template. If I go direct to I get a page that is correct, NTLM authentication works, ie no login dialog presented. but if I a...

application delivery

BIG-IP Access Policy Manager (APM)

Nimbostratus

Jun 03, 2015

I'll need to get that from the Exchange server guys, but basically all virtual directories are being sent to the same pool, and NTLM authentication is being used. This is on the internal side, using the template choice of "load balance and optimize CAS traffic" There's no APM involved here and the irule in question is the unmodified Exchange-internal_combined_pool_irule7. I did add log statements to verify what part of it I was hitting when I use the uri of /ews/exchange.asmx. I just noticed I have experimented with enabling and disabling cache in the /ews portion of the irule. That hasn't made any difference.

extracts from irule that are involved below..... "/ews*" { Exchange Web Services. log local0. "using EWS" pool /Common/Exchange-internal.app/Exchange-internal_oa_pool7

        CACHE::disable
        return

when HTTP_RESPONSE { if { [string tolower [HTTP::header values "WWW-Authenticate"]] contains "negotiate"} { log local0. "is ews going here" ONECONNECT::reuse disable ONECONNECT::detach disable NTLM::disable } if {[HTTP::header exists "Transfer-Encoding"]} { HTTP::payload rechunk } }

I do get the log message of "is ews going here", which matches what I see in the headers in the browser. Further testing yesterday leads me to believe I need to look at the ssl client profile to support extensions being used by IE that are recognized when going direct to the server that are not being recognized by the LTM. What's odd is that in my uat environment with an LTM and iapp template of the same version, it works....

Help guide the future of your DevCentral Community!

What tools do you use to collaborate? (1min - anonymous)

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5

Forum Discussion

Problem with EWS using iapp template 1.40 for Exchange

F5 Academy at AppWorld 2026

Introducing the F5 AI Assistant for BIG-IP

Recent Discussions

After upgrading from PeopleTools 8.59.11 to 8.61.11 F5 APM is not rewriting the internal URLs

F5 BIG IP laboratory license

F5 mssql health monitor failing

How can I get started with iCall

Connection Rest f5

Related Content

Microsoft Exchange 2010 and 2013 iApp Template

External Monitor Information and Templates

Legacy ASM Templates

APM Advanced Customization Examples with Modern Template, v15.1+

External Monitor Templates

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS