Configuration to change the WebLogic session cookie name in OSM on-premise environment
(Doc ID 2907277.1)
Last updated on NOVEMBER 11, 2022
Applies to:Oracle Communications Order and Service Management - Version 184.108.40.206.0 and later
Information in this document applies to any platform.
A common web security problem is session stealing, which happens when an attacker manages to get a copy of your session cookie. By default, WebLogic Server assigns same cookie name (JSESSIONID) to all Web applications, which makes cookies more vulnerable. You can choose to change cookie name for OSM using procedure described in this KM.
This KM applies to OSM on-premise deployment only. OSM cloud native deployment offers different approaches for achieving the same.
Version: OSM 7.3.5 and later
To view full details, sign in with your My Oracle Support account.
Don't have a My Oracle Support account? Click to get started!
In this Document
|Customizing the cookie name in a traditional OSM environment:|