Forum Discussion

kimhenriksen's avatar
kimhenriksen
Icon for Cirrocumulus rankCirrocumulus
Feb 04, 2016

Ignore domain cookie for some services in the same domain?

Hi,   We have setup up sso configuration for domain.com and it´s working as expected for the most part. All sites in domain.com use sso configuration to enable serverside sso towards the AD.   ...
application delivery
BIG-IP Access Policy Manager (APM)
Michael_Jenkins's avatar
Michael_Jenkins
Icon for Cirrostratus rankCirrostratus
Feb 04, 2016

Do you need to have the domain level cookie setup on the access policy, or could you just have it use the sites instead of the domain?

If you don't want to use the APM to authenticate users on site2.domain.com at all, you can use the ACCESS::disable command in an iRule along with HTTP::cookie remove to remove the 

MRHSession
and 
LastMRH_Session
cookies. That should ignore the APM for that site.