Cisco Community
English
Register
ANNOUNCEMENT - Upcoming Changes in the email address of Community email notifications - LEARN MORE
Register
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
2286
Views
0
Helpful
1
Replies
Highlighted
helsayed78
Beginner
Beginner
‎07-02-2012 07:43 AM
‎07-02-2012 07:43 AM

http connection problems with kerberos authentication using Cisco ACE

Does anyone know how this problem can be solved?

https://supportforums.cisco.com/thread/133381

Regards,

Hesham

0 Helpful
Reply
1 REPLY 1
Highlighted
sesoerensen
Beginner
Beginner
‎07-16-2012 05:47 PM
‎07-16-2012 05:47 PM

http connection problems with kerberos authentication using Cisc

Hesham,

Easy fix

Create a HTTP parameter map, and assign it to the class in the service-policy.

parameter-map type http HTTP

  case-insensitive

  persistence-rebalance

  set header-maxparse-length 65535

  set content-maxparse-length 65535

  length-exceed continue

policy-map multi SLB

class VIP

poli ..

load ..

blah blah

appl-parameter http advanced-options HTTP

Basically, this is what happens:

The kerberos ticket is too big to fit in the HTTP header. Thats, it's to big for ACE, which caps the header size at 4K by default.

Try before you buy test:


Create an user within Active Directory, and only assign it to the bare minimum of security groups.

Then try accessing the website, before applying the configuration.

Cheers mate,

Søren Elleby Sørensen

0 Helpful
Reply
Latest Contents
Deploy HX Bench for Hyperflex on Hyper-V
Created by Jalpa Patel on 07-14-2020 11:55 AM
0
0
0
0
This video shows steps on how to deploy HX Bench tool for Hyperflex on Hyper-V.   Created by: Chris Oak @chrpak 
Install and register the HyperFlex HTML plugin for vCenter
Created by Jalpa Patel on 07-12-2020 01:15 PM
0
0
0
0
This video covers about Cisco HyperFlex HTML plug-in for VMware vCenter, how it enables virtualization administrator to manage and monitor the Cisco HyperFlex physical infrastructure by cross launching HyperFlex Connect from the vSphere Client UI and perf... view more
Rename HX Cluster, vCenter Cluster and Datacenter Names
Created by Jalpa Patel on 07-11-2020 01:05 PM
0
0
0
0
This video covers how you can rename your Hyperflex Cluster, vCenter Cluster and Datacenter objects.   Created by: Himanshu Sardana @hsardana
Kind of Loop is back in ACI !!!
Created by balbaletabrez on 07-09-2020 01:49 AM
2
0
2
0
ACI Fabric start learning external remote IP’s locally on the Leaf switches . Due to this reason, traffic is locally dropped on Leaf Sw03 instead of going outside the fabric. This issue basically interrupted most of the External & Internal services be... view more
Transforming Day 2 Ops with Cisco data center network assura...
Created by gajewell on 07-08-2020 09:25 AM
0
0
0
0
Transforming Day 2 Ops with Cisco Data Center Network Assurance and Insights Live webinar: Network Insider Series Wednesday, July 15, 202010:00 AM Pacific Standard Time (San Francisco, GTM -08:00) Driven by the growth of applications, deluge of data and t... view more
CreatePlease to create content
Discussion
Blog
Document
Video
Content for Community-Ad
Cisco Community May 2020 Spotlight Award Winners

Cisco COVID-19 Survey

Follow our Social Media Channels