LB in front of IWA IIS servers

Hi,
We have configured IWA authentication scheme with OAM 10g. For this, we are using 2 instances of IIS 7 server. Both of these IIS servers are on 2 different physical machines and have been configured for IWA.
Now to achieve HA, we have deployed a Cisco LB in front of these 2 IIS servers.
In OAM IWA authentication scheme, we have given LB hostname for IWA server.
Now when we make a request for IWA protected resource, the request is passed on to IIS server from LB but after that, nothing happens.
Is there anything we need to do at LB configuration to resolve our issue ?
Thanks

To provide my inputs, please respond to below queries:
Are you getting any error when you access IWA protected resource ?
What is the response it gives ?
Note: Make sure you have added LB URL to Local Intranet zone in IE browser settings.
Thanks
GK

Similar Messages

  • Problems Balancing IIS servers with ACEs.

    Hi ...
    Pls your help in this case ...
    I just configured an ACE solution for Web Balancing.  The Web Servers are Microsoft Windows 2008 IIS.
    The ACE is configured with two contexts, one for Web Servers and other for Application Servers (both in Microsoft solution).
    The context were configured in "One Arm" for each subnet (web and apps).
    In attached files I'm sending the configuration of ACE. 
    Any sugestion ?
    The error we got in the browsing is:
    System.Web.HttpException: Validation of viewstate MAC failed. If this application is hosted by a Web Farm or cluster, ensure that <machineKey> configuration specifies the same validationKey and validation algorithm. AutoGenerate cannot be used in a cluster.
    Invalid viewstate.   Client IP: 10.11.60.26  Port: 1173.

    Hello,
    Have you checked if your application requires persistence? Even when both server may have the exact same content if the user gets rebalanced to a different server during the connection will fail and that error you're getting could be a probe of it.
    Just to confirm try doing a no inservice under the secondary server in the serverfarm in question, clear all the caches and re-test.
    If this indeed solves the issue then it can be easily solved using a sticky method such as source IP or cookie insertion.
    HTH
    Pablo

  • Splitting front and back end servers across time zones

    Weblogic Server 7.0
    EJB is in Memphis,
    jsp/servlets/web command classes are in Colorado
    sending a date to the DB (in Memphis) results in a date getting changed by about 13 hours.
    The change happens between the web command class in Colorado and the EJB command class in Memphis.
    Any ideas as to what might be causing this and how to eliminate this bug would be very much appreciated.
    Thanks.

    Solution was that someone had configured the WLS to always operate dates in GMT, therefore the time differences between time zones were blown out of proportion...

  • 2 Front End Servers with reporting enabled in topology but only one server shows reports

    Hi,
    We have 2 Front End Standard pool servers with resiliency enabled between them. The monitoring service is configured in the topology so that both Front End Servers point to the same monitoring database. We have half our users homed on 1 Front
    end and half the other users sitting on the other Front End. In the Reports we can only see information on Audio calls made from users that are sitting on our Primary Front End Pool Server however we cannot see call information from users that are sitting
    on the other front end server?
    Thanks, Kevin

    We have applied the backend updates and verified the config by running Test-CSDatabases cmd-let . I ran enable-cstopology and ran bootstrapper.exe and rebooted both Front End Servers, however we are still unable to see monitoring data of users
    homed on our second Lync Front End server.
    Any other suggestions? Thanks for responses so far, appreciate the assistance!
    DatabaseName               ExpectedVersion            InstalledVersion
    xds                        10.13.2                   
    10.13.2
    lis                        3.1.1                     
    3.1.1
    rtcxds                     15.13.1                    15.13.1
    rtcshared                  5.0.1                      5.0.1
    rtcab                      62.42.2                    62.42.2
    rgsconfig                  5.5.1                      5.5.1
    rgsdyn                     2.2.1                     
    2.2.1
    cpsdyn                     1.1.2                     
    1.1.2
    and ......
    DatabaseName               ExpectedVersion            InstalledVersion
    LcsCDR                     39.82.2                    39.82.2
    QoEMetrics                 62.90.1                    62.90.1

  • Setup Virtual Servers in IIS with WLS 8.1

    Hi,
    I have multiple virtual servers (using host headers) in my IIS 5.0 web server. I also created multiple server instances in WLS. Can anyone tell me how I can integrate this virtual servers to connect to WLS virtual servers via port 80.
    Would I have to create ini file for all virtual IIS servers.
    Thanks

    Hi,
    I have multiple virtual servers (using host headers) in my IIS 5.0 web server. I also created multiple server instances in WLS. Can anyone tell me how I can integrate this virtual servers to connect to WLS virtual servers via port 80.
    Would I have to create ini file for all virtual IIS servers.
    Thanks

  • Lync Mobile client signs out - Unknown Error- requires IIS reset on Front End

    My Mobile clients are signing out on their own and do not sign back in until I reset the IIS on my front end server. i have a standard edition front end with IIS ARR as my reverse proxy. 
    Another issue that I have (this is sporadic) is that when a mobile device is connected to internal wifi it fails to sign and and the only way to get it back to work is to turn off wifi , sign in, and then you can turn on wifi and then it can sign in even
    if wifi is on. This will work for sometime until the issue comes back again. 
    I would appreciate if anyone can help me resolve this issue.
    Thanks

    Hi,
    Which version of IIS did you use? If you are deploying mobility, we recommend that you use IIS 7.5. The Lync Server Mobility Service installer sets some ASP.NET flags to improve performance. IIS 7.5 is installed by default on Windows Server 2008
    R2, and the Mobility Service installer automatically changes the ASP.NET settings. If you use IIS 7.0 on Windows Server 2008, you need to manually change these settings.
    Best Regards,
    Eason Huang
    Eason Huang
    TechNet Community Support

  • Localdir 416 real servers not failing..

    We have a localdirector sitting in front of two real servers(IIS).
    Load balancing works fine with both backend servers connected, and show real produces:
    # show real
    Real Machines:
    No Answer TCP Reset DataIn
    Machine Connect State Thresh Reassigns Reassigns Conns
    server2:0:0:tcp 2 IS 8 0 0 0
    server1:0:0:tcp 0 IS 8 0 0 0
    But if one backend server is disconnected, show real does not change (No OOS, or TESTING under STATE), and nothing is displayed in syslog?
    ping server1
    real_server_ip_1 NO response received -- 1000ms
    real_server_ip_1 NO response received -- 1000ms
    real_server_ip_1 NO response received -- 1000ms
    show real
    Real Machines:
    No Answer TCP Reset DataIn
    Machine Connect State Thresh Reassigns Reassigns Conns
    server2:0:0:tcp 2 IS 8 0 0 0
    server1:0:0:tcp 1 IS 8 0 0 0
    Is this normal?
    Minimal config, just for testing:
    virtual virt_ip:0:0:tcp is
    real real_server_ip_1:0:0:tcp is
    real real_server_ip_2:0:0:tcp is
    name real_server_ip_1 server1
    name real_server_ip_2 server2
    name virt_ip domain
    bind virt_ip:0:0:tcp real_server_ip_1:0:0:tcp
    bind virt_ip:0:0:tcp real_server_ip_2:0:0:tcp
    Regards,
    MB

    Depending on your version, here is a good document how servers are failed and brought back on LD.
    http://www.cisco.com/univercd/cc/td/doc/product/iaabu/localdir/ld33rns/ld334con/ld3_ch01.htm#xtocid275378
    The reassign command controls how many times a connection synchronization (TCP SYN) packet from a requesting client is sent to a nonresponsive server before it is reassigned to another server. The default is three TCP SYN packets. After the third packet receives no response or a TCP RST from the server, the fourth packet is sent to another server.
    Each reassign process increments the reassign tally by one. When the tally reaches the threshold value, the server is considered failed. With a default threshold value of 8, the reassign process will happen eight times before the server is considered failed. "
    In other words, the LD doesn't ping and check the server if its up or down, it takes the client(end-user). Depending on your site, if you have a very slow active site... it could take that much more time for LD to fail the down server.
    -jan

  • Can't post to Mircrosoft IIS machines

    Hi I am using the following code from a tutorial. But it blows up every time after a second POST. But I can post as many times as I need to a linux box or any other UNIX boxes I can think of.
    What is going on? Why does it not work with microsoft products?
    * HttpMidlet.java
    * Created on October 23, 2001, 11:19 AM
    import javax.microedition.midlet.*;
    import javax.microedition.lcdui.*;
    import javax.microedition.io.*;
    import java.io.*;
    * @author kgabhart
    * @version
    public class HttpMidlet extends MIDlet implements CommandListener {
    // A default URL is used. User can change it from the GUI
    private static String defaultURL = "http://www.microsoft.com";
    // Main MIDP display
    private Display myDisplay = null;
    // GUI component for entering a URL
    private Form requestScreen;
    private TextField requestField;
    // GUI component for submitting request
    private List list;
    private String[] menuItems;
    // GUI component for displaying server responses
    private Form resultScreen;
    private StringItem resultField;
    // the "send" button used on requestScreen
    Command sendCommand;
    // the "exit" button used on the requestScreen
    Command exitCommand;
    // the "back" button used on resultScreen
    Command backCommand;
    public HttpMidlet(){
    // initialize the GUI components
    myDisplay = Display.getDisplay( this );
    sendCommand = new Command( "SEND", Command.OK, 1 );
    exitCommand = new Command( "EXIT", Command.OK, 1 );
    backCommand = new Command( "BACK", Command.OK, 1 );
    // display the request URL
    requestScreen = new Form( "Type in a URL:" );
    requestField = new TextField( null, defaultURL, 100, TextField.URL );
    requestScreen.append( requestField );
    requestScreen.addCommand( sendCommand );
    requestScreen.addCommand( exitCommand );
    requestScreen.setCommandListener( this );
    // select the HTTP request method desired
    menuItems = new String[] {"GET Request", "POST Request"};
    list = new List( "Select an HTTP method:", List.IMPLICIT, menuItems, null );
    list.setCommandListener( this );
    // display the message received from server
    resultScreen = new Form( "Server Response:" );
    resultScreen.addCommand( backCommand );
    resultScreen.setCommandListener( this );
    }//end HttpMidlet()
    public void startApp() {
    myDisplay.setCurrent( requestScreen );
    }//end startApp()
    public void commandAction( Command com, Displayable disp ) {
    // when user clicks on the "send" button
    if ( com == sendCommand ) {
    myDisplay.setCurrent( list );
    } else if ( com == backCommand ) {
    // do it all over again
    requestField.setString( defaultURL );
    myDisplay.setCurrent( requestScreen );
    } else if ( com == exitCommand ) {
    destroyApp( true );
    notifyDestroyed();
    }//end if ( com == sendCommand )
    if ( disp == list && com == List.SELECT_COMMAND ) {
    String result;
    if ( list.getSelectedIndex() == 0 ) { // send a GET request to server
    System.out.println("getHTTP");
    result = sendHttpGet( requestField.getString() );
    else // send a POST request to server
    System.out.println("postHTTP");
    result = sendHttpPost( requestField.getString() );
    resultField = new StringItem( null, result );
    resultScreen.append( resultField );
    myDisplay.setCurrent( resultScreen );
    }//end if ( dis == list && com == List.SELECT_COMMAND )
    }//end commandAction( Command, Displayable )
    private String sendHttpGet( String url )
    HttpConnection hcon = null;
    DataInputStream dis = null;
    StringBuffer responseMessage = new StringBuffer();
    try {
    // a standard HttpConnection with READ access
    hcon = ( HttpConnection )Connector.open( url );
    // obtain a DataInputStream from the HttpConnection
    dis = new DataInputStream( hcon.openInputStream() );
    // retrieve the response from the server
    int ch;
    while ( ( ch = dis.read() ) != -1 ) {
    responseMessage.append( (char) ch );
    }//end while ( ( ch = dis.read() ) != -1 )
    catch( Exception e )
    e.printStackTrace();
    responseMessage.append( "ERROR" );
    } finally {
    try {
    if ( hcon != null ) hcon.close();
    if ( dis != null ) dis.close();
    } catch ( IOException ioe ) {
    ioe.printStackTrace();
    }//end try/catch
    }//end try/catch/finally
    return responseMessage.toString();
    }//end sendHttpGet( String )
    private String sendHttpPost( String url )
    HttpConnection hcon = null;
    DataInputStream dis = null;
    OutputStream os = null;
    StringBuffer responseMessage = new StringBuffer();
    // the request body
    String requeststring = "This is a POST.";
    try {
    hcon = (HttpConnection)Connector.open(url);
    byte [] data = "TextField=Hello&TextField2=Hello2&Submit=Submit".getBytes ();
    hcon.setRequestMethod(HttpConnection.POST);
    hcon.setRequestProperty("User-Agent","Profile/MIDP-1.0 Configuration/CLDC-1.0");
    hcon.setRequestProperty("Content-Language","en-US");
    hcon.setRequestProperty("Content-Type","application/x-www-form-urlencoded");
    os = hcon.openOutputStream ();
    os.write (data);
    os.close ();
    //conn.close ();
    // obtain DataInputStream for receiving server response
    dis = new DataInputStream( hcon.openInputStream() );
    // retrieve the response from server
    int ch;
    while( ( ch = dis.read() ) != -1 ) {
    responseMessage.append( (char)ch );
    }//end while( ( ch = dis.read() ) != -1 ) {
    catch( Exception e )
    e.printStackTrace();
    responseMessage.append( "ERROR" );
    finally {
    // free up i/o streams and http connection
    try {
    if( hcon != null ) hcon.close();
    if( dis != null ) dis.close();
    if( os != null ) os.close();
    } catch ( IOException ioe ) {
    ioe.printStackTrace();
    }//end try/catch
    }//end try/catch/finally
    return responseMessage.toString();
    }//end sendHttpPost( String )
    private String xsendHttpPost( String url )
    HttpConnection hcon = null;
    DataInputStream dis = null;
    DataOutputStream dos = null;
    StringBuffer responseMessage = new StringBuffer();
    // the request body
    String requeststring = "This is a POST.";
    try {
    // an HttpConnection with both read and write access
    hcon = ( HttpConnection )Connector.open( url, Connector.READ_WRITE );
    // set the request method to POST
    hcon.setRequestMethod( HttpConnection.POST );
    //hcon.setRequestProperty("Content-length", ""+ requeststring.length() );
    hcon.setRequestProperty("Content-type","application/x-www-form-urlencoded");
    //hcon.setRequestProperty("Content-language", "en-US"); // should be config.
    //hcon.setRequestProperty("Accept", "text/xml");
    //hcon.setRequestProperty("Connection", "close");
    // obtain DataOutputStream for sending the request string
    dos = hcon.openDataOutputStream();
    byte[] request_body = requeststring.getBytes();
    // send request string to server
    for( int i = 0; i < request_body.length; i++ ) {
    dos.writeByte( request_body[i] );
    }//end for( int i = 0; i < request_body.length; i++ )
    // obtain DataInputStream for receiving server response
    dis = new DataInputStream( hcon.openInputStream() );
    // retrieve the response from server
    int ch;
    while( ( ch = dis.read() ) != -1 ) {
    responseMessage.append( (char)ch );
    }//end while( ( ch = dis.read() ) != -1 ) {
    catch( Exception e )
    e.printStackTrace();
    responseMessage.append( "ERROR" );
    finally {
    // free up i/o streams and http connection
    try {
    if( hcon != null ) hcon.close();
    if( dis != null ) dis.close();
    if( dos != null ) dos.close();
    } catch ( IOException ioe ) {
    ioe.printStackTrace();
    }//end try/catch
    }//end try/catch/finally
    return responseMessage.toString();
    }//end sendHttpPost( String )
    public void pauseApp() {
    }//end pauseApp()
    public void destroyApp( boolean unconditional ) {
    // help Garbage Collector
    myDisplay = null;
    requestScreen = null;
    requestField = null;
    resultScreen = null;
    resultField = null;
    }//end destroyApp( boolean )
    }//end HttpMidlet

    Modified your code on the line:
    dos.writeByte( request_body );
    to:
    dos.write( request_body );
    and it works with 2 Microsoft IIs servers. I don't know if you ever got this working or if you went to a GET method but we were having major difficulties with IIs servers as well. I figured late was better than never for a response.

  • Weblogic clustering with IIS as web server

              Hi,
              I have two IIS servers and two machines for weblogic. I am planning to have
              a weblogic clustering. I have seen the documentation online. But has some questions
              for which dint find any answers.
              Somewhere on the newsgroup I read , if we will be having IIS proxy-plug in we
              do not need the DNS setup. Is that true ?
              How many IPs and other things I need to do this setup ? What is admin server &
              its role ? configuration how to do it is not avaliable in the documentation.
              Could someone help ?
              Thanks and Regards,
              Sheetal
              

    Hi
              you can find the ore information in the following link
              http://bernal.bea.com/stage/wls/docs70/plugins/isapi.html
              Regards,
              Prasanna Yalam

  • List of IIS websites with Host header

    Hi, 
    I am looking for a script,  to export a list of websites along with host header information.  This should accept list of IIS servers 6/7/7.5 and provide output into a text file. 
    Thanks,
    Kunal  Jaiswal

    Might look around here.
    https://gallery.technet.microsoft.com/scriptcenter/site/search?f%5B0%5D.Type=RootCategory&f%5B0%5D.Value=servers&f%5B0%5D.Text=Servers&f%5B1%5D.Type=SubCategory&f%5B1%5D.Value=iis&f%5B1%5D.Text=IIS
    or try asking them over here.
    http://forums.iis.net/
    Regards, Dave Patrick ....
    Microsoft Certified Professional
    Microsoft MVP [Windows]
    Disclaimer: This posting is provided "AS IS" with no warranties or guarantees , and confers no rights.

  • IIS - Webserver - Best Practice ?

    Hey Community
    I have some questions , and i´d love to hear some responses.
    I have a virtualized environment at home ... DC-1 , DC-2 , GW-1 , WEB-01 and some client and application VM´s running.
    GW-01 and WEB-01 are not part of the domain mcsa.local
    I have setup WS2012-r2 on all machines.
    And on WEB-01 is IIS role installed , and i only use the IP address , i dont have a www domain.
    My questions are these : 
    question 1. What is the best practice for this setup ?
    question 2. And how do I forward http requests from gw-01 to Web-01 ? (do i do that in DNS or do I do that in Routing and remote access MMC console ?)
    question 3(not necessary to answer this one). How do I add a second site easily , and how do I visit the second site from the outside ( do i surf to x.x.x.x/secondsite? )
    Any step-by-step guide would be really helpful, on how i would do this so that external computers can visit my website that is hosted on WEB-01.

    Hi,
    question 1. What is the best practice for this setup ?
    Please refer to the following article for configuration steps:
    http://www.iis.net/learn/web-hosting/scenario-build-a-web-farm-with-iis-servers/configuring-step-1-install-iis-web-farm-infrastructure
    question 2. And how do I forward http requests from gw-01 to Web-01 ? (do i do that in DNS or do I do that in Routing and remote access MMC console ?)
    You could do this using IIS Manager, please refer to:
    https://technet.microsoft.com/en-us/library/cc732969(v=ws.10).aspx
    For issue related to iis, please ask in:
    http://forums.iis.net/
    Regards.
    Please remember to mark the replies as answers if they help and unmark them if they provide no help. If you have feedback for TechNet Support, contact [email protected]

  • Need VB script for getting the IIS certification information

    Hi guys,
    I have totally 1000 IIS servers  2003 & 2008
    windows and some of the  servers configured
    IIS 3rd party Security certificates. I need a script to get the certification information like expiry date & certificate vendor name.
    Regards,
    SreeM

    Post here:http://forums.iis.net/
    Look in Gallery for IIS scripts:http://gallery.technet.microsoft.com/
    ¯\_(ツ)_/¯

  • CSS Keepalive for two applications on same IIS server

    We have 2 IIS servers running two MOSS 2007 appications. The app owners want keepalives setup for each application which each application is using the same IP and just different hostnames. So I need an example to do keepalives using a hostname / uri index.html for example rather then it using the IP address.
    I'm inheriting a system and don't want to break what's working so any examples would be greatly appreciated.
    Thanks
    Jim

    Jim,
    This is how I utilize 1 server with multiple web sites. The web server is configured to respond to http host headers. For this to work DNS needs to be correct. Each web site has a keepalive file for the script to check.
    service connections-1
    ip address 1.1.1.1
    keepalive port 80
    redundant-index 8001
    keepalive type script ap-kal-httptag "connections1.company.com /keepalive/lb.htm connections1"
    keepalive frequency 15
    active
    service datacentacc-1
    ip address 1.1.1.1
    keepalive port 80
    redundant-index 8030
    keepalive type script ap-kal-httptag "datacenteraccess1.company.com /keepalive/lb.htm datacenteraccess1"
    keepalive frequency 15
    active
    DNS entries for the individual web sites will point to the servers. I.E. connections1.company.com = 1.1.1.1
    datacenteraccess1.company.com = 1.1.1.1
    The Content rules will be the following.
    content connections
    vip address 2.2.2.2
    advanced-balance sticky-srcip
    redundant-index 8000
    add service connections-1
    protocol tcp
    port 80
    url "//connections.company.com/*"
    active
    content datacenteraccess
    vip address 2.2.2.2
    advanced-balance sticky-srcip
    redundant-index 8025
    add service datacentacc-1
    port 80
    protocol tcp
    url "//datacenteraccess.company.com/*"
    active
    Rich

  • Trouble with IIS-6 Server

    I'm in desparate need of some help. Up until now I've done
    "basic" web pages and uploaded html web pages to FTP sites with no
    problem. I am currently working on Catalog web site and am using
    ASP Javascript. I was told those were compatible with IIS servers.
    I uploaded the pages to a testing server and I am getting a HTTP
    404 error/Page Not Found in my browser (Safari).
    I am using ECart with Dreamweaver to create my shopping cart.
    Anyone have any suggestions. Am I using the wrong
    extension?

    Hi
    A 404 error means the page is not at the location that you
    have
    provided. You need to check exactly where your page is on the
    server, if
    indeed it is on the server.
    Cheers jojo
    Adobe Community Expert for Dreamweaver 8
    http://www.webade.co.uk
    http://www.ukcsstraining.co.uk/
    Extending Knowledge, Daily.
    http://www.communityMX.com/
    Free 10 day trial
    http://www.communitymx.com/joincmx.cfm

  • Flash FLV and Microsoft IIS Bug?

    I have run into a problem that may be a real problem for
    anyone relying on SWF files playing FLV files from Microsoft IIS
    servers. I have used this method of playing videos on a few of my
    clients sites and as of the last week or so these videos stopped
    playing! I know nothing changed with the videos so I was not sure
    what happend. As a spent countless hours trouble shooting this
    problem, I found that if I took the .SWF and FLV files off the
    server they were on and moved them to another server (non
    microsoft) they magically work again. At first I thought my hosting
    company had a problem with their IIS server but I checked three
    other servers (IIS) and they all have the same problem (all
    patched). Now I know these files played on all these servers in the
    last week or so. I even went as far as to check these file against
    a computer running XP with IIS turned on and running and the SWF
    file loads but will not play the FLV video. I even downloaded
    "flvplayer" to check this theory to make sure I didnt do something
    stupid with my SWF file. It appears that all my computers that have
    been patched using microsoft's update program over the last week or
    so are now broken. Is there anyone out there that can check my
    theory?

    Maybe the settings got deleted during the patch. Follow these
    directions and see if they work again:
    http://www.adobe.com/cfusion/knowledgebase/index.cfm?event=view&id=KC.tn_19439&extid=tn_19 439&dialogID=185014411&iterationID=1&sessionID=9630f39ccb3510656d78&stateID=0+0+37458677&m ode=simple
    Good luck.

Maybe you are looking for