Search code examples
dockernginxazure-active-directoryidentityserver4kerberos-delegation

NTLM Kerberos support for Identity server which set behind nginx server (not working for IE)

I have Identity server 4 which reside behind ngnix proxy. and it support Azure AD. now if I SSO on https then it is not working for IE browser but work properly in other browser due to IWA/NTLM/Kerberos .

So change need to do in ngnix to support that.

Solution

  • we have default setting in nginx like this :

       listen 443 ssl http2 default_server;
   listen [::]:443 ssl http2 default_server;

    Then I have removed http2

        listen 443 ssl default_server;
    listen [::]:443 ssl default_server;

    so IE has issue with SSL + http2