This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(3.2, 10%, 10%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EJD%3C/text%3E%3C/svg%3E)
I configured SSO on sharepoint with WAP and ADFS, sometimes user get 500 error when access site, and it works well after clear browser cache.
I checked event log on WAB server and ADFS Tracing, there is an error in WAP logs and there isn't any message in ADFS Tracing logs.
anybody tried this before ?
this is what I see in WAP event logs:
Cookie in browser:
experimentation_subject_id=eyJfcmFpbHMiOnsibWVzc2FnZSI6IklqUm1ObUppWVRZNUxXRmtZMlF0TkRNeFlpMWhPV0k1TFdWbU9XUXpZMkV3WkRRMk15ST0iLCJleHAiOm51bGwsInB1ciI6ImNvb2tpZS5leHBlcmltZW50YXRpb25fc3ViamVjdF9pZCJ9fQ==--2be4a215ff52c670aab475295d2361ebb263e1f0; Hm_lvt_633e9c48ce7d51971e03192408f4e504=1627609214,1627631049,1627975372,1628146791
Thanks a lot in advance
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(76.8, 2%, 17%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ERN%3C/text%3E%3C/svg%3E)
Did you ever find a solution for this? I'm having the same issue.
From the event id 12027, make sure the Web Application Proxy is domain joined to the same domain as the domain controller to ensure that the domain controller establishes trust with Web Application Proxy.
In addition, please access the site in WAP server with ADFS , and use fiddler to debug what is happening on the backend, if possible, please provide detailed screenshot for further troubleshooting.
If an Answer is helpful, please click "Accept Answer" and upvote it.
Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.
Do you have any progress on this issue?
Please remember to update this thread if you need further assistance.
this issue is a sporadic problem, and WAP works well after clear cache. I want if there is a way to ignore cookie in WAP server if cookie is not correct.
if there is right cookie or no cookie in client browser, the request flow is :
user access website from browser --> WAP get request --> WAP validate request cookie : if there is a right cookie --> get user ticket from DC; if there isn't cookie or cookie is expired --> authenticate from ADFS -->WAP get token from ADFS --> WAP get user ticket from DC.
but my problem is :
user access website from browser --> WAP get request --> WAP validate request cookie, cookie is not right, and WAP post error: 500, the error XML is :
<EventData>
<Data Name="errMsg">unspecified error (0x80004005)</Data>
<Data Name="TransactionID">{128304E3-4AB7-0007-FAF1-8712B74AD701}</Data>
<Data Name="SessionID">{128304E3-4AB7-0007-FAF1-8712B74AD701}</Data>
<Data Name="PublishedAppName">KM For IDP Proxy</Data>
<Data Name="PublishedAppID">2b0b6c09-022f-0259-b67d-fae84c0d25e3</Data>
<Data Name="PublishedExternalUrl">https://xx.xx.com/</Data>;
<Data Name="PublishedBackendUrl">https://xx.xx.com/</Data>;
<Data Name="User"><Unknown></Data>
<Data Name="UserAgent">Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36</Data>
<Data Name="DeviceID"><Not Applicable></Data>
<Data Name="TokenState">NotFound</Data>
<Data Name="CookieState">NotFound</Data>
<Data Name="ClientRequestUrl">https://km.hanhua.com/</Data>;
<Data Name="BackendRequestUrl"><Not Applicable></Data>
<Data Name="PreAuthenticationFlow"><Not Applicable></Data>
<Data Name="BackendServerAuthenticationMode" />
<Data Name="StateMachineState">OuOfOrderFEHeadersWriting</Data>
<Data Name="ResponseCodeToClient">500</Data>
<Data Name="ResponseMsgToClient"><Not Applicable></Data>
<Data Name="ClientCertIssuer"><Not Found></Data>
<Data Name="ResponseCodeFromBackend"><Not Applicable></Data>
<Data Name="FrontendLocationHeader"><Not Applicable></Data>
<Data Name="BackendLocationHeader"><Not Applicable></Data>
<Data Name="BackendHttpVerb"><Not Applicable></Data>
<Data Name="ClientHttpVerb">GET</Data>
</EventData>
thank you
Thank you for your update, we could find little information about the error in your log, we suggest you open a support ticket about it. It needs more detailed investigation with support team instead of simple troubleshooting via replies in forum.
Thank you very much.
there is a A10 load balance setting before access WAP, and I use A10 to assign browser request to different server (WAP server or APP server), which may caused this issue. I will try adust A10 configuration to verify it, thanks for your help.