SSO between ADFS and Webtop sites
Hey all.
We're currently creating a proof of concept with 3 sites, controlled by 2 APE policy's.
- test_universal_policy. (login form, AD auth, SSO)
- test_webtop_policy. (similar to above but includes a full webtop for some RDP/Vmware links)
The 2 policies are configured in single-domain mode
We would like to use single sign on between ADFS/Integrated auth sites and Webtop. If I access the webtop first, SSO will work across the other 2 test sites (an ADFS and integrated auth site). However if I go to say Office 365 first (which uses ADFS) and login, I'm unable to access the Webtop later.
Is there any way to configure (or have an iRule) so that the Webtop is available should it not be the first site visited?
I've currently been playing about with iRule session creation, policy evaluation and overriding the "load Webtop" portion when the universal policy briefly included advance resource assignment but have not had much luck
Any ideas?