I have found that the Kerberos Constrained Delegation should be on the Sharepoint Site Application User account, and that need to be mapped to the WAP Host on the Domain Controller.
now it is working fine
This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
I have Sharepoint 2019 on-premise configured withe kerberos Constrained delegation, if i login using the Windows authentication everything working fine,
i have the WAP and ADFS(Non-claims aware Relying party) and i authenticatin through ADFS via WAP the sharepoint sites are unresponsive, but i am able to login and the pages are not rendering fully. it strucks .
what needs to do to make it work with ADFS Non-Claims Aware relying party via WAP.
Set-WebApplicationProxyApplication -BackendServerAuthenticationSpn 'HTTP/sharepoint2019.mydomain.com' -BackendServerUrl 'https://sharepoint2019.mydomain.com/' -ExternalCertificateThumbprint 'C738403CDD99A7B423CCBA1A73ED588D78YE839' -EnableHTTPRedirect:$true -ExternalUrl 'https://sharepoint2019.mydomain.com/' -Name 'Sharepoint2019' -ID '152031a0-eda5-19bf-ea88-e0e5910de73f'
Tried Adding the below registry entry as well but still not working,
Set-ItemProperty 'HKLM:\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\WinHttp\' -Name EnableDefaultHTTP2 -Value 0
Getting More 500 Internal Server Error
I have found that the Kerberos Constrained Delegation should be on the Sharepoint Site Application User account, and that need to be mapped to the WAP Host on the Domain Controller.
now it is working fine
Hi, @ananpeculiar ,
For your scenario, I would suggest you to open a ticket about this issue. And you can check the ULS log and event viewer for more detailed information about this unexpected behavior.
If an Answer is helpful, please click "Accept Answer" and upvote it.
Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.