Forum Discussion
Kai_Wilke
Sep 27, 2016MVP
Hi Sanjai,
I'd like to recommend to temporary rule out APM (e.g. via
ACCESS::disable
for a specific Client IP) to see if your LTM is already able to route the request correctly.
If you're required to switch pools/nodes based on the provided URI you have to apply a OneConnect Profile (recommended) or
LB::detach
the connection before each node selection (not optimal) to allow LTM to switch the server side connections as needed.
If this is working stable and the request are able to pass to every single web application, then you should reenable APM and tweak the SSO profiles as needed. Keep in mind, that in combination with OneConnect you're limited to NTLM, Basic, Forms SSO or something homegrown that doesn't require a Session_based-Authentication. If NTLM is used, then you have to attach a NTLM profile to allow LTM to reuse idle OneConnect connections on a per-user basis.
Cheers, Kai