When OpenSSO Enterprise is configured to issue unique SSO tokens for each application or policy agent, the following cookies are involved:
Table 16–1 Session Cookies in Unique SSO Tokens
Cookie Name |
Place Holder Cookie Value |
Domain |
---|---|---|
iPlanetDirectoryPro |
SSO-token The actual cookie value is the value of the token. |
The domain is set to the host name of the OpenSSO Enterprise instance where the user was authenticated. Example: OpenssoHost.example.com |
iPlanetDirectoryPro |
restricted-SSO-token The actual cookie value is the value of the token. |
The domain is set to the host name of the policy agent instance for which the restricted token is issued. Example: agentHost.example.com |
sunIdentityServerAuthNServer |
https://OpenssoHost.examplecom:8080 The cookie value is the URL of the OpenSSO Enterprise instance where the user was authenticated. In this example, the protocol is HTTPS. |
The domain must be set to cover all instances of OpenSSO Enterprise installed on the network. Example: .example.com |