Exchange (OWA) ASM Template and Cookie Violation
Hello,
I have a Portal Access VS which allow to access multiple applications (URIs). One of those is an OWA Exchange 2010. All is working fine.
I am now trying to secure the OWA application with the ASM module. I crated an ASM policy using the latest exchange ASM template (https://devcentral.f5.com/d/new-asm-templates). I then applied a LTM policy to my Portal Access VS, which says that if the URI contains */owa, then it must applies the ASM policy I created. All is working fine.
Now what I don't understand with that given ASM template, is that I trigger a Modified Domain Cookie Violation for the following cookies:
- tzid
- UserContext
Reason says "New". Both those cookies are set in the Enforced Cookie section of the ASM policy. I did not put them here, it is the template that did so. Why am I triggering this violation ? Is the template wrong and should have put those cookies in the Allowed cookie section ?
Thanks