Modified Domain Cookie triggered on LTM persistance cookie

Question

I am running 12.1.2 and have configured ASM in learning mode for one of my Virtual servers.
I am getting "Modified Domain Cookie"  triggered on LTM persistance cookies with the reason stating NEW. Why is this happening. I would have thought that as it is all happening in the one BIG-ip appliance that ASM would know that LTM is setting persistence cookies and not alert on them.&nbsp;
Should I just accept the suggestion to set the enforcement type to allow?&nbsp;

daniel_varela · Answer

The violation you are seeing is not something bad. The ASM needs to be aware of all the cookies running in your application. As part of those cookies you see the LTM persistence cookie and this one needs protection as well. Just add it to your list of enforced cookies and you should not see that violation triggered anymore.

Forum Discussion

Modified Domain Cookie triggered on LTM persistance cookie

1 Reply

Welcome! a la Communidad DevCentral LATAM de F5!

The New F5 Certified BIG-IP Administrator Certification Exams Now Live

Recent Discussions

Entra ID F5 APM MDM Intune integration compliance check

Replacing i2800 pair with new F5-BIG-AFM-r2800

Unable to download files greater than 4GB. Running version 15.1.5.1

Efficient Method to Compare F5 Configurations

F5 Big-IQ read-only API username creation.

Related Content

Trigger js challenge/Captcha for ip reputation/ip intelligence categories

iRule to modify a content-security-policy header

Leveraging Ansible Rulebooks for Streamlined Event Triggers: Advantages and Benefits

Setting up persistence in F5 XC

modified domain cookies

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS