APM with cookies - having issues with multiple sites
I am a little lost and hoping someone can shed some light.
I have an environment where we use an external IDP. We recently added a new site, and for some reason it's not working as other sites do.
Here's what I have:
- VS1 = outlook.test.com
- VS2 = sharepoint.test.com
- VS3 = password.test.com
All VS's have an Access profile that uses SAML and shoots them out to the IDP for auth and then allows them in. That works fine and has been for years. In the APM profile under SSO/Domain I have cookies set as follows:
- VS1 = test.com
- VS2 = sharepoint.test.com
- VS3 = password.test.com & I've tried no cookie and I've tried test.com
If I access VS3 first it works, as long as I have the cookie set to test.com. If I have it set to password.test.com (the actual FQDN) it times out.
However, with it set to test.com it works - and then when I go to VS1 that works as well. However AFTER I have gone to VS1 when I go back to VS3 I get a session error, no matter how many times I click start a new session it just generates the same error. When I look in the logs it sees the request coming on the virtual server for VS1 not VS3.
In all it seems rather simple. Instead of having test.com for VS1 I should have outlook.test.com - but the problem is I can't change that b/c well...it's mail and that's kind of important and it's been working. I think if I made that change it would work. But what I don't understand is why does VS2 work when I have it set to sharepoint.test.com whereas VS3 won't work when it's set to password.test.com?