Forum Discussion
In order to see the unencrypted traffic, try this: https://devcentral.f5.com/articles/running-wireshark-captures-from-f5-big-ip
With APM, click the check box for persistent cookie, this is commonly the resolution to allow Client Applications to share an existing Browser cookie, the browser will still need to be open for this to work.
Are your users using NTLM, Kerberos, or ClientCertificate authentication to access the environment? Is everyone a member of the same AD, and receive the same Group Policies? Are you allowing users to use their own systems?
This would be a great time to utilize the end point inspections of APM to filter what systems are allowed to access the applications, and/or how they access. It will also give you a little bit more detail in the errors to see which users are having the issues, and why (when they fail the access policy).