I recently upgraded to exchange 2016 CU17 (from CU10), and ever since then i get a login loop on my owa and ecp pages only when using a chrome browser. Further inspection shows that the samesite cookie is set to "none", but in order for it to work as "none", it also has to be set as secure.
I tried performing the steps in the content rules documentation, section 6.6 (https://support.kemptechnologies.com/hc/en-us/articles/203125019-Content-Rules#MadCap_TOC_35_2). I setup this content rule and then placed it within the /ecp subvs for testing. I tried it in both the Request rules and Response Rule section, but I'm still left with a login loop in chrome.
I am running the LM2400 in front of the exchange server and it is performing the SSL offlload.
Any tips would be greatly appreciated.