My Oracle Support Banner

Form Based Authentication Deletes the Persistent Cookie When Used With An IWA Authentication Scheme (Doc ID 577442.1)

Last updated on MARCH 08, 2017

Applies to:

COREid Access - Version: 10.1.4.2 and later   [Release: 10g and later ]
Information in this document applies to any platform.
Checked for relevance on 12-Apr-2010

Symptoms

Customer has ssoCookie:Max-Age="value" configured in an IWA authentication scheme. However, this feature is not working as expected in combination with Form based authentication.

Open browser
browse to website 1 (protected by IWA).
--> Verified cookie was created

Close browser

Open new browser
browse to website 2 (protected by Form-based authentication)
--> No credential prompt. Access was granted
--> persistent cookie automatically gets deleted

Close browser

Open new browser
browse to website 2 (Form-based authentication)
--> prompt for credtential
--> enter userid/password
--> access granted

Changes

As mentioned in the OAM admin guide, the parameter ssoCookie:Max-Age="value" only works with Mozilla browsers.

Cause

To view full details, sign in with your My Oracle Support account.

Don't have a My Oracle Support account? Click to get started!


In this Document
  Symptoms
  Changes
  Cause
  Solution

Platforms: 1-914CU;

This document is being delivered to you via Oracle Support's Rapid Visibility (RaV) process and therefore has not been subject to an independent technical review.

My Oracle Support provides customers with access to over a million knowledge articles and a vibrant support community of peers and Oracle experts.