Forum Discussion
R_Marc
Apr 25, 2015Nimbostratus
The _sys_APM_activesync irule apparently had some other BA specific rules which were contributing to my issues. I've removed those as well.
if { $f_insert_clientless_mode == 1 } {
HTTP::header insert "clientless-mode" 1
HTTP::header insert "username" $apm_username
HTTP::header insert "password" $apm_password
}
unset f_insert_clientless_mode
That being said, if that's the issue I can see some issues with security. Those headers need to be blocked/reset on ingress.
It would assume that someone with a valid cert wanted to hack user X, so it wouldn't be an external vector, but I'm going to preempt that.
This all assumes this fixes the issue.