Form Based Authentication Deletes the Persistent Cookie When Used With An IWA Authentication Scheme (Doc ID 577442.1)

Last updated on MARCH 08, 2017

Applies to:

COREid Access - Version: 10.1.4.2 and later   [Release: 10g and later ]
Information in this document applies to any platform.
Checked for relevance on 12-Apr-2010

Symptoms

Customer has ssoCookie:Max-Age="value" configured in an IWA authentication scheme. However, this feature is not working as expected in combination with Form based authentication.

Open browser
browse to website 1 (protected by IWA).
--> Verified cookie was created

Close browser

Open new browser
browse to website 2 (protected by Form-based authentication)
--> No credential prompt. Access was granted
--> persistent cookie automatically gets deleted

Close browser

Open new browser
browse to website 2 (Form-based authentication)
--> prompt for credtential
--> enter userid/password
--> access granted

Changes

As mentioned in the OAM admin guide, the parameter ssoCookie:Max-Age="value" only works with Mozilla browsers.

Cause

Sign In with your My Oracle Support account

Don't have a My Oracle Support account? Click to get started

My Oracle Support provides customers with access to over a
Million Knowledge Articles and hundreds of Community platforms