Configuring cookie encryption within the HTTP profile

Question

K14784: Configuring cookie encryption within the HTTP profile (10.x - 12.x)&nbsp;
Followed this Not able to encrypt cookies any thoughts? &nbsp;
Running on 11.4&nbsp;

habib_khan · Answer

Kunal,¬†
Can you share your http profile configuration from command line using (/S1-green-P:Active)(/Common)(tmos) show running-config ltm profile http name .¬†
And you can trying link text for encrypting and decrypting cookie using irule.¬†

ashwin_venkat · Answer

Hello Kunal,
Can you confirm that you entered the Cookie Encryption Passphrase after entering the appropriate cookie name under 'Encrypt Cookies' option within the HTTP profile?  Without the passphrase being in place, you won't see the cookies being encrypted.
If both these settings are in place, then can you return the output you see for the following command in your command line:
egrep '^ltm profile http|encrypt-cookie' bigip.conf

For example, this is what I see when I run this command in my lab unit that contains the passphrase as well as the cookie name "foo":
egrep '^ltm profile http|encrypt-cookie' bigip.conf
ltm profile http /Common/custom-http {
    encrypt-cookie-secret $M$2p$r+mlhEDU9JUdh7R6T80nDg==
    encrypt-cookies { foo }

Forum Discussion

Configuring cookie encryption within the HTTP profile

2 Replies

Welcome! a la Communidad DevCentral LATAM de F5!

The New F5 Certified BIG-IP Administrator Certification Exams Now Live

Recent Discussions

SSH forward proxy

Multiple Default Gateways

ASM Sec-CH-UA-Full-Version-List backquote in Header

Scenarios where Service Policy should be used over iRule and Vice versa

Issue on connection limit

Related Content

Decrypt, Encrypt, Decrypt, Encrypt, Encrypt....

Let's Encrypt

F5 BIG-IP Advanced WAF – DOS profile configuration options.

Automate Let's Encrypt Certificates on BIG-IP

Load Balancing TCP TLS Encrypted Syslog Messages

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS