Web Agent Guides › Web Agent Configuration Guide › Help Prevent Attacks › Compare IP Addresses to Prevent Security Breaches

Compare IP Addresses to Prevent Security Breaches

An unauthorized system can monitor packets, steal a cookie, and use that cookie to gain access to another system. To prevent a breach of security by an unauthorized system, you can enable or disable IP checking with persistent and/or transient cookies.

The IP checking feature enables the Web Agent to compare the IP address stored in a cookie from the last request with the IP address in the current request to see if they match. If they do not match, the Web Agent rejects the request.

The two parameters used to implement IP checking are PersistentIPCheck and TransientIPCheck. Set them as follows:

• If you enabled PersistentCookies, set PersistentIPCheck to yes.
• If you did not enable PersistentCookies, set TransientIPCheck to yes.

SiteMinder identity cookies are unaffected by IP checking.