Documentation

 

 

Versions Compared

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

Introduction

Use this guide to configure a SecureAuth IdP realm's token / cookie settings.

 

Prerequisites

1. SecureAuth IdP 9.x+ configured and running.

2. A realm created for Single Sign-on (SSO).

 

SecureAuth IdP Web Admin configuration steps

Post Authentication tab

1. In the Forms Auth / SSO Token section, click View and Configure FormsAuth keys / SSO token to configure the token / cookie settings and to configure this realm for SSO. 

Image Removed

2. On the Forms Auth / SSO Token page, in the Forms Authentication section, no configuration is required for the Name, Login URL, or Domain fields.

3. If SSL is required to view the token, select True from the Require SSL dropdown.

4. Set Cookieless to specify whether SecureAuth IdP will deliver the token in a cookie to the user's browser or device:

  • UseCookies enables SecureAuth IdP to always deliver a cookie
  • UseUri disables SecureAuth IdP from delivering a cookie, and instead delivers the token in a query string
  • AutoDetect enables SecureAuth IdP to deliver a cookie if the user's settings allow it
  • UseDeviceProfile enables SecureAuth IdP to deliver a cookie if the browser's settings allow it, no matter how the user's settings are configured

5. Set the Sliding Expiration to True if the cookie remains valid as long as the user is interacting with the page.

6. Set the Timeout value to determine the number of minutes a cookie is valid.

Image Removed

7. In the Machine Key section, no changes are required in the Validation field unless the default value does not match the company's requirement.

If a different value is required, select it from the dropdown.

8. No changes are required in the Decryption field, unless the default value does not match the company's requirement.

If a different value is required, select it from the dropdown.

9. No configuration is required for the Validation Key or Decryption Key fields.

Image Removed

10. In the Authentication Cookies section, no configuration is required for the Pre-Auth Cookie, Post-Auth Cookie, or the Clean Up Pre-Auth Cookie fields.

11. Enable the cookie to be Persistent by selecting True - Expires after Timeout from the dropdown.

Selecting False - Session Cookie enables the cookie to be valid as long as the session is open. The cookie will expire once the browser is closed or the session expires.

Image Removed

12. Click Save.This page has moved to the new docs site: https://docs.secureauth.com/1907/en/configure-token-or-cookie-settings.html