Forum Discussion

Nimbostratus

Nov 13, 2014

Persistence Cookie Encryption

I noticed after upgrading to 11.5 in the cookie persistence profile, there is now an option for: Cookie Encryption Use Policy Encryption Passphrase Has anyone used this? Does it just encry...

application delivery

BIG-IP Access Policy Manager (APM)

Altostratus

Nov 14, 2014

You are right there is near zero documentation on this. I have experimented with it and it does encrypt cookie contents just like the HTTP profile option does. Regarding the "Cookie encryption use policy" setting the help tab in v11.6 says this

Specifies the way in which the cookie encryption format is used. The default is disabled.

disabled: Generates the cookie format unencrypted.

preferred: Generate an encrypted cookie, but accepts both encrypted and unencrypted formats.

required: Cookie format must be encrypted.

Recent Discussions

Under Attack? F5 Will Help You.
Contacting F5 Support?

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

Forum Discussion

Persistence Cookie Encryption

Recent Discussions

F5 looses the token for the first call

iRule - Url rewrite and header replace and pool selection not working

Switch ssl profile based on weak cipher detection via IRULE

full-proxy HTTP2

Decode ObjectSID from Base64-encode string

Related Content

Decrypt, Encrypt, Decrypt, Encrypt, Encrypt....

Let's Encrypt

Encrypting Cookies

Cookie Encryption

Decoding the IPv4 address from the persistence cookie

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS