Forum Discussion

Altostratus

Jan 22, 2015

Configure the Domain cookie attribute which instructs web browsers to only send the cookie to the specified domain and all subdomains

Hi, Can we configure the "Domain" Cookie via ASM or iRule ? This is a PCI security requirement that we have to impose. We just need a Domain attribute in the session cookie. Currently sinc...

Cirrostratus

Jan 22, 2015

In our environment, we use a few subdomains (xyz.example.com, or abc.example.com) and with an iRule have added additional set-cookie headers when the access policy is started to add the session id cookies and specify the domain (domain.com). With this, we get the cookie on that domain as well as any subdomains. Hope this helps (and that I understood your question right).

Forum Discussion

Configure the Domain cookie attribute which instructs web browsers to only send the cookie to the specified domain and all subdomains

Recent Discussions

Big-IP Next 20.2.0-2.375.1+0.0.43 iRule count problem

rewrite Azure AD response for portal access via web portal

Azure SAML - F5 APM

iRule resulting in too many redirects

ASM cookie, modifying "domain" field

Related Content

Rewrite Subdomain

Add SameSite attribute to APM Cookies

iRule that saves subdomain

Lightboard Lessons: HTTP Cookie SameSite Attribute

Set the SameSite Attribute for LTM Persistence Cookies