APM SSO config using Kerberos to Weblogic backend not supplying session id cookie on post authentication requests
Hi,
We have constrained delegation and kerberos authentication working using APM 11.2.0, however once authenticated, subsequent request the JSESSIONID is not being supplied in the F5 request to the weblogic service. The APM happily supplies the JSESSIONID on authentication but not thereafter.
Of course for each request Weblogic will then create another session, and another, and the app will break.
Could it be because the only way we could get APM to supply a Kerberos ticket with the SPNEGO OID rather than the default (F5) KRB5 OID, is to set "on 401 request only" that it won't send the JSESSIONID cookie either unless it gets a 401 response? That's certainly my suspicion at this stage - and only because I have compared a direct (not through F5) browser session using SPNEGO with the Weblogic app.
Thanks in advance for any advice.
David.
David.