Description
This article describes how to enable 'cookiessession1' with secure flag true.
Related link.
Fortinet guide – https://help.fortinet.com/fweb/582/Content/FortiWeb/fortiweb-admin/http_sessions_security.htm
Solution
In order to assign a secure flag to internal cookies 'cookiesession1' with session management enabled, this flag can only be assigned if the connection is over SSL.
This feature is independent of the cookie security policy, if any, in use.
Example CLI configuration.
# config server-policy policy
edit xxxxxx < ----- Replace with server-policy name.
set internal-cookie-secure enable
end
