Forum Discussion

ryanm99's avatar
ryanm99
Icon for Nimbostratus rankNimbostratus
May 23, 2017

Office Mobile Applications through APM to Sharepoint 2013

Hello Everyone,

 

I have been attempting to get office mobile applications on iOS to work through APM using an iRule. I started out using this iRule:

 

https://devcentral.f5.com/codeshare/apm-sharepoint-authentication

 

While I was working through this, I noticed that office mobile clients are sending an HTTP preauthorization so the iRule was attempting to grab the username and password from that pre auth, setting them to blank, and then causing the access policy to fail.

 

I have made a couple of tweaks to the iRule. I am sure many of you can do it much better than what I came up with. At this point, I can successfully establish an APM session, map my username and password properly to grab a kerberos SSO token, but then the app tells me it cannot connect and I am unsure why. I am wondering if anyone may have some thoughts or ideas to try.

 

2 Replies

  • One additional piece of information on this that I just figured out. These mobile apps are meant to support office 365 with Microsoft's modern authentication scheme. If I understand modern auth properly, it is basically OAUTH under the hood. The 13.0 release of APM is supposed to support OAUTH so maybe there is something we could actually use there that would allow users to authenticate to the office 365 via adfs and then be able to access cloud resources as well as on premises resources by using OAUTH. I grabbed the authorization header and spit it out to a log file just to see what was being sent and here is what I received on the initial HTTP Request:

    : HTTP authorization header is Bearer