Configuration to change the WebLogic session cookie name in OSM on-premise environment (Doc ID 2907277.1)

Last updated on APRIL 02, 2024

Applies to:

Oracle Communications Order and Service Management - Version 7.3.5.0.0 and later
Information in this document applies to any platform.

Purpose

Introduction

A common web security problem is session stealing, which happens when an attacker manages to get a copy of your session cookie. By default, WebLogic Server assigns same cookie name (JSESSIONID) to all Web applications, which makes cookies more vulnerable. You can choose to change cookie name for OSM using procedure described in this KM.

Scope

This KM applies to OSM on-premise deployment only. OSM cloud native deployment offers different approaches for achieving the same.
Version: OSM 7.3.5 and later

Details

	To view full details, sign in with your My Oracle Support account.
	Don't have a My Oracle Support account? Click to get started!

In this Document

Customizing the cookie name in a traditional OSM environment:

My Oracle Support provides customers with access to over a million knowledge articles and a vibrant support community of peers and Oracle experts.

Configuration to change the WebLogic session cookie name in OSM on-premise environment (Doc ID 2907277.1)

Applies to:

Purpose

Introduction

Scope

Details

To view full details, sign in with your My Oracle Support account.

Don't have a My Oracle Support account? Click to get started!