Help
Technical Forum
Ask questions. Discover Answers.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Technical Forum Quicklinks: No Replies | Active-Not Solved | Recent Solutions
Custom Alert Banner

Are you an expert?    Interested in presenting at F5 AppWorld 2024?    Submit a proposal by Nov 29th!

err tmm1[24399]: 011f0007:3: http_process_state_prepend - Invalid action:0x107041 clientside

Go to solution
akelekar
Nimbostratus
Nimbostratus

‎06-Oct-2023 12:52

I'm trying to setup a iRule that will terminate my F5 sessions and call the logout for our Microsoft ADB2C policy.

 
when ACCESS_ACL_ALLOWED { 
if { [HTTP::uri] contains "Logoff" } { 
    ACCESS::session remove 
    after 200
    HTTP::redirect "https://{tenant}.b2clogin.com/{tenant}.onmicrosoft.com/{policy}/oauth2/v2.0/logout?post_logout_redirect_uri=https%3A%2F%2Fjwt.ms%2F"
log local0. "iRule logout triggered: Removing access session for [ACCESS::session sid]" 
}
 
But when the user clicks on the Logoff, I see the following in the LMT log and the following error in the browser

Hmmm… can't reach this page 

 
err tmm[24399]: 011f0007:3: http_process_state_prepend - Invalid action:0x107041 clientside (X.X.x.x:61335 -> y.y.y.y:443) ((null connflow))
 
What are we not doing right here. This is from Microsoft documentation
 
Thanks
Atul
Labels:
0 Kudos
1 ACCEPTED SOLUTION

Go to solution
Paulius
MVP
MVP
In response to akelekar

‎09-Oct-2023 10:56

@akelekar It doesn't seem that the iRule is exactly the same as the referenced but before troubleshooting that log I would recommend that you have the APM pieces in place because it is possible that they might be related.

View solution in original post

0 Kudos
6 REPLIES 6

Go to solution
Paulius
MVP
MVP

‎06-Oct-2023 22:44

@akelekar Which document are you using?

0 Kudos

Go to solution
Paulius
MVP
MVP
In response to akelekar

‎09-Oct-2023 07:55

@akelekar You are positive you have met the APM prerequisites for this to function properly?

0 Kudos

Go to solution
akelekar
Nimbostratus
Nimbostratus
In response to Paulius

‎09-Oct-2023 08:51

Not sure I understand what prerequites are needed. I do have admin rights on the server. 

I was hoping to get some more info on what the LMT error means

err tmm[24399]: 011f0007:3: http_process_state_prepend - Invalid action:0x107041 clientside (X.X.x.x:61335 -> y.y.y.y:443) ((null connflow))

0 Kudos

Go to solution
Paulius
MVP
MVP
In response to akelekar

‎09-Oct-2023 10:56

@akelekar It doesn't seem that the iRule is exactly the same as the referenced but before troubleshooting that log I would recommend that you have the APM pieces in place because it is possible that they might be related.

0 Kudos

Go to solution
akelekar
Nimbostratus
Nimbostratus
In response to Paulius

‎09-Oct-2023 11:15

Can you please elaborate on "have the APM pieces in place"?

As far as we see, the APM itself seems to be working fine. If the users session is new, it sends it to the ADB2C for signin and after signin, it forwards the request to the corrct app. THe per-request and persession policies seem to be working fine with the session variables being copied correctly and passed as header to the application.

0 Kudos
Copyright © 2023 Khoros, LLC