Previous Topic: Modify the Session Update Period

Next Topic: Validate a Session Cookie Domain

Enable Single Use Session Cookies

You can increase the security of your environment by having SiteMinder create session cookies that are only used once. Single-use session cookies prevent anyone with access to the following items from copying a session cookie and then re-using it to gain unauthorized access to resources:

You can control whether SiteMinder uses single-use or multiple-use session cookies by setting the following parameter:

To enable single use session cookies

  1. Ensure your environment meets the following conditions:
  2. In your Web Agents and cookie provider, set the value of the StoreSessioninServer parameter to yes.


Copyright © 2010 CA. All rights reserved. Email CA about this topic