OAM 11R2 : OAM Cookie Does Not Honour MiscCookies=Secure Or SsoCookie=Secure For SECURE Cookie (Doc ID 1950701.1)

Last updated on SEPTEMBER 21, 2016

Applies to:

Oracle Access Manager - Version 11.1.2.2.0 and later
Information in this document applies to any platform.

Goal

The data center cookie OAM_GITO will not be set secure. The webgate settings miscCookies=Secure and ssoCookie=Secure did not have a effect.

OAM_GITO cookie does not honour miscCookies=Secure or ssoCookie=Secure for SECURE cookie

We have configured secure cookie by setting ssoCookie=Secure
miscCookies=Secure in Authentication Agent
http://docs.oracle.com/cd/E40329_01/admin.1112/e27239/shared.htm#CHDJBCCB

Now all OAM cookies are secure except OAM_GITO . OAM_GITO is part of http://docs.oracle.com/cd/E40329_01/admin.1112/e27239/mdc.htm#AIAAG88844

 

See:

 

==> OAM_ID is secure but OAM_GITO is not SECURE

 

Solution

Sign In with your My Oracle Support account

Don't have a My Oracle Support account? Click to get started

My Oracle Support provides customers with access to over a
Million Knowledge Articles and hundreds of Community platforms