Forum Discussion

Alexander_01_13's avatar
Alexander_01_13
Icon for Nimbostratus rankNimbostratus
Nov 19, 2013

f5 sharepoint tenacious session issue

Good evening!   We are experiencing a security issue with our f5 sharepoint deployment. I have used the iapp f5.microsoft_sharepoint_2010, Software Version is BIG-IP 11.4.1 Build 608.0 Final   ...
mikeshimkus_111's avatar
mikeshimkus_111
Historic F5 Account
Dec 16, 2013

You can use Group Policy to force deletion of Temporary Internet Files when the broswer is closed. This is located under User Configuration>Policies>Administrative Templates>Windows Components>Internet Explorer>Internet Control Panel>Advanced Page. I believe this should delete the persistent cookies (session cookies are deleted automatically when the browser closes).

 

This is only going to work if your clients are joined to a domain and using IE.

 

Alexander_01_13's avatar
Alexander_01_13
Icon for Nimbostratus rankNimbostratus
Dec 16, 2013
Oh, I thought I could enforce the setting on the big ip. Changing group policies would affect only windows machines and only internet explorer and only our own machines, which we believe to be relatively secure. Also there may be users that are used to the cookie persistence and would miss it badly. So, it is no option, I regret.