Manual Chapter :
Managing Cookie Protection
Applies To:
Show Versions
BIG-IQ Centralized Management
- 6.1.0
Managing Cookie Protection
Create or change cookie protection settings
You can create or change protection settings
for cookies in your Web Application Security policies on the BIG-IP device. You can also
import cookie protection settings to the BIG-IQ system when you import your BIG-IP
device configuration. Cookies are used both for policy enforcement (domain cookies) and
for other ASM features (other ASM cookies).
- Click .
- Select an existing cookie protection configuration or create a new one:
- For a new cookie protection configuration, clickAddand provide aName.
- To change the settings on an existing cookie protection configuration, click the configuration name.
- In theAlgorithm Selectionsetting, select the overall cookie security level for all cookie algorithms.This sets default protection for both theDomain Cookie Protectionand theOther ASM Cookiessettings.
- Securesets the security settings to the AES algorithm.This uses more system resources.
- Fastsets the security settings to the BC5 algorithm.
If you want to, you can override the default security settings, which causes theAlgorithm Selectionsetting to change toCustom. - If you want to override the defaultDomain Cookies Protectionsetting, select the scramble algorithm that the system uses to protect domain cookies. To choose to not protect domain cookies with an algorithm, selectNone.Overriding the default setting changes theAlgorithm SelectiontoCustom, creating a custom configuration.
- If you want to override the defaultOther ASM Cookiessetting, select the scramble algorithm that the system uses to protect other ASM cookies. To choose to not protect other ASM cookies with an algorithm, selectNone.Overriding the default setting changes theAlgorithm Selectionsetting toCustom, creating a custom configuration.
- Save your work.
