Description | This article describes how to enable cookiesession1 secure flag attribute in the FortiWeb Cloud application. |
Scope | FortiWeb Cloud. |
Solution |
By default, cookiesession1 generated by FortiWeb Cloud is not set with secure flag attribute.
To prevent cookiesession1 value transmitted in clear text(HTTP), enable ‘Secure flag for internal Cookie’ under Network -> Endpoints -> expand SSL/TLS, select Secure flag for internal Cookie button -> ON.
Clear saved cookies/cache if necessary and verify cookiesession1 secure flag.
For more information on endpoint settings, refer to the FortiWeb Cloud administration guide: |
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.