Problems setting up mutliple ADFS Servers using LTM

Hi Rosario, did you deploy use the ADFS iApp template, or manually? If it's the iApp, which version did you use? You should only need to create one monitor that gets applied to all of the servers at the pool level.

Deployed it manually. As to using the same monitor for all three, then I have a question for clarity. As part of the process in creating the monitor you need to configure the send string as outlined in the implementation guide. Below is the send string of the member which is working: GET /adfs/fs/federationserverservice.asmx HTTP/1.1\r\nHost:adfs.henrico.k12.va.us\r\nConnection:Close\r\n

I have three servers with the following host names adfs, adfs2 and adfs3. How would I configure the monitor send string on the one monitor to support all three servers? Do I add three separate lines each containing it's own nHost value in the send string section?

Mike,

I should of mentioned that the adfs server host names are .internal.  The FQDN for the Federation service is adfs.henrico.k12.va.us as included in the string.  When I try to apply the same monitor to the other two server it comes back with a red triangle.  If I try a different monitor such as https or ICMP, it likes it and turns green but the adfs authentication site stops working.  The only way to restore it is disabling the other servers.

It sounds like 2 of your servers are configured incorrectly if authentication stops working when traffic is sent to them. You should use the iApp template to deploy, BTW. The iApp is here: https://devcentral.f5.com/codeshare/microsoft-active-directory-federation-services-adfs-iapp-template

Do I use the iApp template even if I'm not using APM?

Yes, the iApp supports deploying LTM as well.