Forum Discussion

henry_kay_36032's avatar
henry_kay_36032
Icon for Nimbostratus rankNimbostratus
Dec 25, 2014

APM SSO window folder

hi all,

 

i was configuring for the following scenario but seems like the SSO is not passing through.

 

window 2012 file server with folder permission to AD apm application access to the folder location.

 

without SSO, i will get the pop up logon window and after entering domain\username and password. i will get to the folder directory.

 

i am trying to integrate SSO with this. have tried both NTLMv1 and NTLMv2 with sso credential mapping, seems like it is not passing through the right username.

 

i get a incorrect logon information on the pop up window when i tried the SSO.

 

Anyone tried similar things before? or could point me at a manual i could read up for this? i read the SSO portion from ask F5 but it is not much help.

 

Thanks in advanced. :) and merry christmas everyone :)

 

9 Replies

  • is this with network access or portal access?

     

    do you fill in the correct username / password in the SSO fields? do you add the domain / is it needed?

     

  • It is actually in application access.

     

    The username format is correct as I used it to login to the folder normally.

     

  • ah, well i don't believe you can do full windows file sharing over just one port, it always requires a set of port, next to 445 also 135 for example. i would google on something like firewall ports for SMB and see if it works better with a larger set.

     

  • hi boneyard,

     

    file sharing portion is ok. i am able to upload files or download file, create new directory or delete directory.

     

    Am having issues with SSO. if i did a NTLM authentication for ISS web server, the SSO works fine but when i want to do it for window file directory, somehow the credential is not passing through.

     

    Just double checking, does APM SSO support window directory SSO??

     

  • i find this a tricky question, because i don't know if authenticating against a windows server for file access can be called SSO.

     

    i return to my original point, windows file access in general is broader then port 445. im surprised you are able to even get it working upto some degree, but the part that is missing can very well be caused by missing certain ports / protocols.

     

    if you have the time i would test with full network access first and see if that works. then perhaps try with an app tunnel and more ports.

     

  • hi boneyard,

     

    thanks for your reply. I have tested a full range of ports just to make sure i did not miss out any ports that are needed. ports that i used are range 1 - 1000. this is just in case i miss any.

     

    i still get the same behavior where by when i launch the app access from the webtop, i get the prompt for my window credential before i am allowed to access to my folder.

     

    APM NTLM SSO only supports for web portal login? or we can perform that for actual window directory as well?

     

    i created a web portal prompting for NTLM SSO and it was successful. i managed to perform SSO with my AD credential but with the window directory, it is still a no go.

     

  • could you share the app tunnel configuration for file sharing we couldnt able achieve this configuration could you please help on this