How To Set OAM 11g Policy Cookie Responses At Domain Level

(Doc ID 1511126.1)

Last updated on OCTOBER 25, 2017

Applies to:

Oracle Access Manager - Version 11.1.1.5.0 and later
Information in this document applies to any platform.

Goal

Two applications in the same domain have been protected with Oracle Access Manager (OAM) 11g Server and WebGates. 

There is a requirement for OAM to set cookies after SSO login that will be read by the applications. The OAM Authentication Policy has been configured to set three cookies.

When the first application is accessed, after SSO login OAM sets the cookies and the application can read them.

However OAM is setting these cookies at site-specific level, so when the user moves to the second application in the same browser session the second application cannot read the cookies.

The WebGate Primary HTTP Cookie Domain has been configured as the common domain for the applications, however only the ObSSOCookie/OAMAuthnCookie is being set at domain level. The OAM Policy Response cookies are still being set at site-specific level only.

How to set Policy Response cookies for a specific cookie domain so that all applications in the domain can access them?


 

Solution

Sign In with your My Oracle Support account

Don't have a My Oracle Support account? Click to get started

My Oracle Support provides customers with access to over a
Million Knowledge Articles and hundreds of Community platforms