"Sorry, something went wrong" error message appears when accessing some pages within SharePoint published as a CVPN Bookmark.

• Configure the Bookmark SSO Type as Unified Gateway.

Note: The FQDN for the SharePoint site must share the same domain as the UG FQDN, e.g. https://myportal.domain.com and https://sharepoint.domain.com. This will ensure that browser will include the NS authentication cookies when making the request for SharePoint allowing the NS to honor the authenticated user.

• Create a non-addressable SSL Load Balancer for SharePoint and bind the SharePoint server(s). If more than one SharePoint server is bound make sure to enable persistence (SOURCEIP and SSLSESSION are common options).

• Enable Form-Based Authentication on the Load Balancer using the same UG as the authentication point.

• Create a Content Switching policy to evaluate for the FQDN defined in the SharePoint Bookmark.

 

• Create and bind a Traffic Policy to provide SSO experience. In this case a Basic Authentication is configured on SharePoint using "Domain\Username" format.

 

• Application will appear as SaaS upon authenticating at the Unified Gateway.

---

Problem Cause

Clientless Access component on the NetScaler uses the Regex engine to search and rewrite the URLs contained in all responses provided by backend application servers, SharePoint in this case. There are some situations were the request is build up on the client side, by a java script file for example so the URL is not CVPN-ized (e.g. /cvpn/aHR0cHM6Ly9zaGFyZXBvaW50LnJvbHkubGFiCg/) by the NetScaler. In such cases, the NetScaler will respond to the request with "503 Service Unavailable"