Previous Topic: Authentication URL Open to Malicious Attacks (74278, 76976, 83114, 83117)

Next Topic: Web Agent Option Pack Fails when TRANSIENTIP Checking is Enabled (75240, 83125)

Session Cookie is not Marked as Secure by the Assertion Cosumer Service (74449, 83124)

Symptom:

When an SMSESSION cookie is being set in the browser for a SAML 2.0 federation, it is marked as Secure if the UseSecureCookies parameter is set in the AgentConfigObject corresponding to Federation Web Services.

Solution:

The SMSESSION cookie is now marked as secure.


Copyright © 2010 CA. All rights reserved. Email CA about this topic