Domain Cookie and Logout

Question

Can anyone confirm what I am experiencing.&nbsp;
I have set "Domain Cookie" to contesa.com, and I can successfully use the same authentication across multiple subdomains and vips as expected.  However All functions that logout appear to ignore this setting.  So the cookie still exists, and is never deleted.&nbsp;
Looking at the http traffic all functions that attempt to delete the cookies do not specify the domain, and therefore the cookie is not deleted.  
&nbsp;
I am wondering if this is a bug, by design, or some other configuration that I am missing.&nbsp;

ekaleido · Answer

Did you specify it as a session cookie?&nbsp;

terrence · Answer

I am not sure what that means?&nbsp;
This is all I have changed in the access policy, and for authentication it is working as expected, however all functions which are meant to remove this session cookie fail, as they never specify the domain.&nbsp;
Terry&nbsp;

terrence · Answer

In the end I changed to multidomain sso instead, and it satisies my needs in a much better manner.&nbsp;

Forum Discussion

Domain Cookie and Logout

3 Replies

Recent Discussions

Portal Access to HTTPS resources slow

HOW TO HIRE A HACKER TO RECOVER STOLEN BITCOIN. CONTACT FASTFUND RECOVERY

Big-IP Next 20.2.0-2.375.1+0.0.43 iRule count problem

rewrite Azure AD response for portal access via web portal

Azure SAML - F5 APM

Related Content

Change cookie domain in HTTP::respond

modified domain cookies

Enriching AFM with public domain Threat Intelligence

Rewrite single cookie "USERCOOKIE" domain if cookie domain is "www1.test,example.com"

Configure F5 ASM Logout page