Configuring cookie encryption within the HTTP profile

Question

K14784: Configuring cookie encryption within the HTTP profile (10.x - 12.x)&nbsp;
Followed this Not able to encrypt cookies any thoughts? &nbsp;
Running on 11.4&nbsp;

habib_khan · Answer

Kunal,¬†
Can you share your http profile configuration from command line using (/S1-green-P:Active)(/Common)(tmos) show running-config ltm profile http name .¬†
And you can trying link text for encrypting and decrypting cookie using irule.¬†

ashwin_venkat · Answer

Hello Kunal,
Can you confirm that you entered the Cookie Encryption Passphrase after entering the appropriate cookie name under 'Encrypt Cookies' option within the HTTP profile?  Without the passphrase being in place, you won't see the cookies being encrypted.
If both these settings are in place, then can you return the output you see for the following command in your command line:
egrep '^ltm profile http|encrypt-cookie' bigip.conf

For example, this is what I see when I run this command in my lab unit that contains the passphrase as well as the cookie name "foo":
egrep '^ltm profile http|encrypt-cookie' bigip.conf
ltm profile http /Common/custom-http {
    encrypt-cookie-secret $M$2p$r+mlhEDU9JUdh7R6T80nDg==
    encrypt-cookies { foo }

Forum Discussion

Configuring cookie encryption within the HTTP profile

2 Replies

AppWorld Berlin iRules Contest!

F5 AppWorld 2026 Las Vegas - iRules Contest Winners!

Recent Discussions

Priority Group Activation is not working

Changes to DO and AS3 GitHub - no longer monitored

SSL Forward Proxy, iRules and Client Hello

monitor/healthcheck issue with envoy gateway

Recommendation for Adv. Lab

Related Content

Decrypt, Encrypt, Decrypt, Encrypt, Encrypt....

Let's Encrypt

F5 BIG-IP Advanced WAF – DOS profile configuration options.

Automate Let's Encrypt Certificates on BIG-IP

Encrypting Cookies

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS