For more information regarding the security incident at F5, the actions we are taking to address it, and our ongoing efforts to protect our customers, click here.

Forum Discussion

Raymond_Cheung_'s avatar
Raymond_Cheung_
Icon for Nimbostratus rankNimbostratus
May 25, 2005

Can I keep persistance using Single Signon Cookie?

Can I use "Universal Persistance" with iRule to keep persistance using "Single Signon Cookie"?   It will be going to one virtual server with one pool and 2 node.   The Cookie Name is "ObSSOC...
application delivery
dev
devops
iRules
unRuleY_95363's avatar
unRuleY_95363
Historic F5 Account
May 25, 2005
Two answers:

First, a simple rule that does universal persistence on a cookie only ever present coming from the client would look like this: 

 
 rule signon_persist { 
    when HTTP_REQUEST { 
       persist uie [HTTP::cookie ObSSOCookie] 
    } 
 }

Second, Dr.Teeth referred to cookie hash persistence, which is more or less the equivalent to the above. It only performs persistence based on an already present cookie. In your case, you might configure it like: 

 
 profile persist signon_persist { 
    mode cookie 
    cookie mode hash 
    cookie name ObSSOCookie 
    cookie hash offset 0 
    cookie hash length 0 
 }

Either of these methods should work fine for persisting the same signon cookie to the same server.