Forum Discussion

Cirrus

8 years ago

Configuring cookie encryption within the HTTP profile

K14784: Configuring cookie encryption within the HTTP profile (10.x - 12.x) Followed this Not able to encrypt cookies any thoughts? Running on 11.4

LTM

security

Ashwin_Venkat

Employee

8 years ago

Hello Kunal,

Can you confirm that you entered the Cookie Encryption Passphrase after entering the appropriate cookie name under 'Encrypt Cookies' option within the HTTP profile? Without the passphrase being in place, you won't see the cookies being encrypted.

If both these settings are in place, then can you return the output you see for the following command in your command line:

egrep '^ltm profile http|encrypt-cookie' bigip.conf

For example, this is what I see when I run this command in my lab unit that contains the passphrase as well as the cookie name "foo":

egrep '^ltm profile http|encrypt-cookie' bigip.conf

ltm profile http /Common/custom-http {
    encrypt-cookie-secret $M$2p$r+mlhEDU9JUdh7R6T80nDg==
    encrypt-cookies { foo }

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5

Forum Discussion

Configuring cookie encryption within the HTTP profile

AppWorld Berlin iRules Contest!

F5 AppWorld 2026 Las Vegas - iRules Contest Winners!

Recent Discussions

Priority Group Activation is not working

Changes to DO and AS3 GitHub - no longer monitored

SSL Forward Proxy, iRules and Client Hello

monitor/healthcheck issue with envoy gateway

Recommendation for Adv. Lab

Related Content

Decrypt, Encrypt, Decrypt, Encrypt, Encrypt....

Let's Encrypt

F5 BIG-IP Advanced WAF – DOS profile configuration options.

Automate Let's Encrypt Certificates on BIG-IP

Encrypting Cookies

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS