Last Modified: Jul 13, 2024
Affected Product(s):
BIG-IP APM
Known Affected Versions:
11.6.3, 11.6.3.1, 11.6.3.2, 11.6.3.3, 11.6.3.4, 11.6.4, 11.6.5, 11.6.5.1, 11.6.5.2, 11.6.5.3, 12.0.0, 12.0.0 HF1, 12.0.0 HF2, 12.0.0 HF3, 12.0.0 HF4, 12.1.0, 12.1.0 HF1, 12.1.0 HF2, 12.1.1, 12.1.1 HF1, 12.1.1 HF2, 12.1.2, 12.1.2 HF1, 12.1.2 HF2, 12.1.3, 12.1.3.1, 12.1.3.2, 12.1.3.3, 12.1.3.4, 12.1.3.5, 12.1.3.6, 12.1.3.7, 12.1.4, 12.1.4.1, 12.1.5, 12.1.5.1, 12.1.5.2, 12.1.5.3, 12.1.6, 13.0.0, 13.0.0 HF1, 13.0.0 HF2, 13.0.0 HF3, 13.0.1, 13.1.0, 13.1.0.1, 13.1.0.2, 13.1.0.3, 13.1.0.4, 13.1.0.5
Fixed In:
14.0.0, 13.1.0.6
Opened: Feb 27, 2018 Severity: 2-Critical Related Article:
K12423316
When using VMware View HTML5 client, end users are able to authenticate and see available View resources on the APM webtop. However, any attempt to launch the resource (desktop or application) in HTML5 mode momentarily appears to function, but then redirects to the initial APM login page.
End user cannot launch VMware View resources with View HTML5 client.
This occurs when the following conditions are met: -- BIG-IP APM is protecting VMware Horizon View 7.4 resources. -- End user tries to launch a View resource from the APM webtop using the Horizon View HTML5 client.
You can use the following workarounds: -- If you are already running Horizon 7.4, use native View clients instead. -- If you have not upgraded to Horizon 7.4, stay on an older Horizon release until this issue is resolved. -- If you are running BIG-IP APM release 13.1.0, you can add the following iRule to the virtual server that handles HTML5 client connections: when HTTP_REQUEST { if { ([info exists tmm_apm_view_uuid]) && ([HTTP::method] == "GET") && ([HTTP::uri] ends_with "/portal/webclient/sessiondata")} { HTTP::cookie remove "sessionDataServiceId" } } when HTTP_RESPONSE { if { ([info exists tmm_apm_view_uuid]) } { set cookieNames [HTTP::cookie names] foreach aCookie $cookieNames { set path [HTTP::cookie path $aCookie] if {[string length $path] > 0} { HTTP::cookie path $aCookie "/f5vdifwd/vmview/$tmm_apm_view_uuid$path" } } } } Important: -- After applying the iRule and before attempting a connection, be sure to clear all cache and cookies from the client systems. Otherwise, the test operation may need to be executed before exhibiting successful behavior. -- The iRule workaround is for BIG-IP APM release 13.1.0. It is not supported for older BIG-IP releases.
Horizon View version 7.4 in HTML5 mode now functions correctly with APM.