Forum Discussion

Altostratus

May 18, 2022

Secure and HTTPonly cookie

Hello everyone, I want to know the difference between enabling Secure and HTTPonly attribute cookie on persistence profile (LTM) and Headers => Cookies List => created cookie (ASM) because Secu...

application delivery

security

CA_Valli

MVP

Jun 13, 2023

LTM cookie persistence profile injects a cookie that F5 uses to track and load balance the same connections in an HTTP session.
Likewise, when ASM is implemented, F5 injects a cookie in client session that uniquely identifies this connection and is used to track client activity.

Cookie configuration options apply separately to the two injected cookies.

Forum Discussion

Secure and HTTPonly cookie

Recent Discussions

Disk space full - what files, folders are safe to delete?

ASM instance creation

BIG-IP DNS: Check Status Of Multiple Monitors Against Pool Member

Open Redirection Mitigation

F5Access | MacOS Sonoma

Related Content

Increased Security With First Party Cookies

Using ChatGPT for security and introduction of AI security

Auditing Security Policy Updates

How to add Httponly and Secure attributes to HTTP cookies (for 11.5.x)

HTTP Multipart and Security Implications