Leveraging BIG-IP APM for seamless client NTLM Authentication

I am seeing the same problem as drugovm and brad. After a little digging I found that the [ACCESS::session sid] command in the HTTP_ REQUEST portion of the iRule returns an empty string. Checking for values in the ACCESS_SESSION_STARTED portion of the iRule does generate a sid value, but this is not preserved when the actual http request comes through. I even tried manually creating a session with [ACCESS::session create] in the HTTP_ REQUEST portion of the rule, however, this appears to be an invalid usage of the command. I am on 11.3 for this particular BIG-IP, so could that be the issue? I will set it up on my 11.5 set tomorrow and see if the behavior changes.