Forum Discussion

Nimbostratus

Mar 01, 2016

Passphrase for cookie encryption profile

Is it mandatory to enable and provide "Cookie Encryption Passphrase" while creating a http profile for cookie encryption.

At present I have created a http profile with no passphrase and the cookie is not encrypted. Is it possible that F5 uses any default passphrase if we do not check the Cookie Encryption Passphrase box .

application delivery

LTM

BinaryCanary_19
Mar 01, 2016
If you want cookie encryption, then yes. A passphrase is mandatory, as well as the names of the cookies you want encrypted.

No, cookies are not encrypted by default.

BinaryCanary_19
Historic F5 Account
Mar 01, 2016
If you want cookie encryption, then yes. A passphrase is mandatory, as well as the names of the cookies you want encrypted.

No, cookies are not encrypted by default.
- Prasath_Varatha
  Nimbostratus
  Mar 01, 2016
  Thanks for your reply. Can I know why a passpharse is required to encrypt cookie, how it works ? if you give/suggest a link learn them it would be helpful. Thanks again.

Recent Discussions

Under Attack? F5 Will Help You.
Contacting F5 Support?

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

Forum Discussion

Passphrase for cookie encryption profile

Recent Discussions

TCP Out-of-order, TCP Dup ACK, and TCP Retransmission packets are displayed.

APM with EntraID as idP / request signed

Creating Policy using Terraform

Alert Mail when virtual server down trubleshooting

How to disable RC4 Cipher on SSL

Related Content

AS3 TLS certificate without passphrase

Lock and Key - Encrypting EBS Disk Volumes for BIG-IP AWS Deployments

DoS Profiles

Android Encrypted Databases

Cookie Encryption Across Pools and Services

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS