kunjan
Mar 24, 2014Nimbostratus
APM Clientless Mode
Hi list,
Few queries regarding clientless mode-
1) Does every request create a new session id for clientless mode for APM?
2) When will it clear/remove the session id?
Clientless-mode removes the 302 redirect pattern from the access policy creation and evaluation process. So instead of getting the APM session cookie in that initial 302 redirect to /my.policy, you get it on the first response from the server. Any subsequent requests from the client, assuming the client sends back the session cookie, will use the same session. If the client does not send back the session cookie, then a new APM session is created for each request. The existing sessions will be removed based on the timeout settings in the access policy.