SSO fails with Chrome and Firefox, Load balancing ADFS 3 with Authentication at Netscaler.
Article ID: CTX205968
Updated On:
Description
Chrome and Firefox both fallback to forms based auth after failing SSO with Kerberos at Netscaler. IE works fine.
Resolution
Add Chrome and Firefox user agents using the Set-AdfsProperties -WIASupportedUserAgents command at ADFS.
Example:
Set-AdfsProperties -WIASupportedUserAgents ("MSIE 6.0", "MSIE 7.0", "MSIE 8.0", "MSIE 9.0", "MSIE 10.0", "Trident/7.0", "MSIPC", "Windows Rights Management Client", "Firefox/25.0", "Mozilla/4.0", "Mozilla/5.0")
Example:
Set-AdfsProperties -WIASupportedUserAgents ("MSIE 6.0", "MSIE 7.0", "MSIE 8.0", "MSIE 9.0", "MSIE 10.0", "Trident/7.0", "MSIPC", "Windows Rights Management Client", "Firefox/25.0", "Mozilla/4.0", "Mozilla/5.0")
Problem Cause
The issue is that ADFS does not allow all browsers to do Integrated Windows Authentication by default.Additional Information
You can check the supported user agent types by using the following powershell command:
Get-AdfsProperties | select -ExtendedProperty WIASupportedUserAgents
Get-AdfsProperties | select -ExtendedProperty WIASupportedUserAgents
Was this article helpful?
Yes
No
Powered by
