F5 APM and sharepoint 2010 AAM, get loading msg on drop down context menus
Hi,
We are using F5 11.6 APM and LTM with SP2010. We are not using the out of the box iApp for SharePoint but a custom one virtually doing the same. We are hitting one small but painful issue over https.
We get the "loading....." message when you try to use the context menu on document drop downs.
We are making our internal web applications that currently run over HTTP accessible via F5 so they will keep the same url/name but access it over HTTPS when externally (which we do over ISA). I don’t want to run everything under https internally.
Existing setup over ISA: The alternative access mappings we have look as follows: Internal URL Zone Public URL
http://mywebapp.company.com Default http://mywebapp.company.com https://mywebapp.company.com Internet https://mywebapp.company.com
and if someone clicked on an https link internally the item would still load / function. I have not extended the web applications in SharePoint as we are not using different authentication mechanisms.
When we put F5 APM in and kept the above AAMs we started to get the"loading...." message when trying to use the drop down context menus
So in the F5 best practice guides and help articles it says change them to what is below and have two default AAMs
Internal URL Zone Public URL
https://mywebapp.company.com Default https://mywebapp.company.com http://mywebapp.company.com Default https://mywebapp.company.com
As soon as you use the above the context menu starts working over HTTPS! no more loading message However, if I then try to use the site over HTTP (as all our users internally do) you get the same “Loading…” message again when they try and use the drop down context issue.
The actual error in fiddler / firefox showed (ive removed the url with someWebapp) “Mixed Content: The page at 'https:// SomeWebapp /Forms/AllItems.aspx' was loaded over HTTPS, but requested an insecure XMLHttpRequest endpoint '…some url /Forms/AllItems.aspx'. This request has been blocked; the content must be served over HTTPS.”
The SSL Certificate is bound to the web application on 443, normal traffic on port 80.
Q. Do I need to extend the web applications as the F5 Sharepoint best practice guides do not state this they only say add the AAMs? Q. I assume F5 and SP2010 support running the same URL name under http internally and https externally. E.g. internally http://mywebapp.company.com and externally https://mywebapp.company.com
Q. Anything else / settings I need to check on LTM e.g. compression and where, APM, SharePoint (I even took the .js out of the blob cache) the web applications are Kerberos enabled.
I found one similar question but no answer just saying check AAM: http://sharepointpromag.com/sharepoint/q-how-do-i-configure-load-balancer-accept-only-ssl-requests-sharepoint-2010-fqdns and this one https://devcentral.f5.com/questions/sharepoint-ssl-offloading-causes-access-denied-error
but none talk about extending the web application in sharepoint regards Brad