Remove Web Application Proxy Server From Cluster

This section varies significantly by technology stack. Follow the instructions that match your infrastructure.

For enterprises, manual removal is a liability. Here is an Ansible snippet to idempotently remove a WAP node. remove web application proxy server from cluster

- name: Gracefully remove WAP node from cluster
  hosts: wap_removal_target
  become: yes
  tasks:
    - name: Stop web application proxy service
      service:
        name: W3SVC
        state: stopped
      ignore_errors: yes
- name: Remove server from load balancer pool via API (F5 example)
  uri:
    url: "https://lb-manager/mgmt/tm/ltm/pool/wap_pool/members"
    method: DELETE
    body: '"name":" ansible_default_ipv4.address :443"'
    headers:
      Authorization: "Bearer  f5_token "
  delegate_to: localhost
- name: Uninstall WAP feature
  win_feature:
    name: Web-Application-Proxy
    state: absent
- name: Clean ADFS trust (run on ADFS server)
  win_shell: |
    Remove-WebApplicationProxyEndpoint -TargetProxyFQDN " ansible_fqdn "
  delegate_to: adfs_internal_server

If your WAP cluster sits behind a load balancer (Layer 4 or Layer 7), you must remove the server from the backend pool configuration. This section varies significantly by technology stack