regarding edgeclient vpn and iis website setup for windows authentication

Question

On Ipad I have EdgeClient.
VPN connection is established from Ipad.
When trying to access the website hosted on IIS 7.0 which is setup for windows authentication, I get a logon dialog on the Ipad.
Once logged on with credentials, able to access the website. 
Now closed the browser and tried accessing same site and it does not show the logon screen, which is good.&nbsp;
Bu my question is, is there a way I can get the logon dialog to not show up the first time since VPN connection is already established. Any references to KB will be appreciated. &nbsp;

yann_desmarest · Answer

Hello,&nbsp;
there is a configuration that can fit your need.&nbsp;
You can configure a new VS that point out to your iis web server. You attach an access profile to this VS. The access profile should have only a vpe with "start-allow". You can attach an sso profile to this access profile.&nbsp;
Thus, once you are authenticated with your edge client, if you try to access this VS, the APM will do sso on your web app using credentials from the edge client session.&nbsp;
One requirement is to prompt user for valid credentials at the login.&nbsp;
You can find a kb here : http://support.f5.com/kb/en-us/products/big-ip_apm/manuals/product/apm-sso-config-11-4-0/6.htmlunique_1287059934&nbsp;

yann_desmarest_ · Answer

Hello,&nbsp;
there is a configuration that can fit your need.&nbsp;
You can configure a new VS that point out to your iis web server. You attach an access profile to this VS. The access profile should have only a vpe with "start-allow". You can attach an sso profile to this access profile.&nbsp;
Thus, once you are authenticated with your edge client, if you try to access this VS, the APM will do sso on your web app using credentials from the edge client session.&nbsp;
One requirement is to prompt user for valid credentials at the login.&nbsp;
You can find a kb here : http://support.f5.com/kb/en-us/products/big-ip_apm/manuals/product/apm-sso-config-11-4-0/6.htmlunique_1287059934&nbsp;

f5learn_164388 · Answer

Thanks, Yann. I will look into this and respond back with my results.

f5learn_164388 · Answer

Thanks, Yann. I will look into this and respond back with my results.

Forum Discussion

regarding edgeclient vpn and iis website setup for windows authentication

4 Replies

F5 Academy at AppWorld 2026

Introducing the F5 AI Assistant for BIG-IP

Recent Discussions

How can I get started with iCall

Connection Rest f5

Kubernetes cert-manager + LetsEncrypt + F5

The GSLB pool is providing an incorrect IP to end users

Unable to ping from some self ip on Velos

Related Content

F5 BIG-IP Access Policy Manager (APM) - Google Authenticator and Microsoft Authenticator

EdgeClient 32-bit and 64-bit

iControl REST Authentication Token Management

Doing mTLS Authentication per URL

Question & Answer: Regarding CVE-2020-5902

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS