Documentation

 

Introduction

Use this guide to configure a SecureAuth IdP realm's token / cookie settings.

 


Prerequisites

1. SecureAuth IdP 9.x+ configured and running.

2. A realm created for Single Sign-on (SSO).

 


SecureAuth IdP Web Admin configuration steps

Post Authentication tab

1. In the Forms Auth / SSO Token section, click View and Configure FormsAuth keys / SSO token to configure the token / cookie settings and to configure this realm for SSO. 

2. On the Forms Auth / SSO Token page, in the Forms Authentication section, no configuration is required for the Name, Login URL, or Domain fields.

3. If SSL is required to view the token, select True from the Require SSL dropdown.

4. Set Cookieless to specify whether SecureAuth IdP will deliver the token in a cookie to the user's browser or device:

  • UseCookies enables SecureAuth IdP to always deliver a cookie
  • UseUri disables SecureAuth IdP from delivering a cookie, and instead delivers the token in a query string
  • AutoDetect enables SecureAuth IdP to deliver a cookie if the user's settings allow it
  • UseDeviceProfile enables SecureAuth IdP to deliver a cookie if the browser's settings allow it, no matter how the user's settings are configured

5. Set the Sliding Expiration to True if the cookie remains valid as long as the user is interacting with the page.

6. Set the Timeout value to determine the number of minutes a cookie is valid.

7. In the Machine Key section, no changes are required in the Validation field unless the default value does not match the company's requirement.

If a different value is required, select it from the dropdown.

8. No changes are required in the Decryption field, unless the default value does not match the company's requirement.

If a different value is required, select it from the dropdown.

9. No configuration is required for the Validation Key or Decryption Key fields.

10. In the Authentication Cookies section, no configuration is required for the Pre-Auth Cookie, Post-Auth Cookie, or the Clean Up Pre-Auth Cookie fields.

11. Enable the cookie to be Persistent by selecting True - Expires after Timeout from the dropdown.

Selecting False - Session Cookie enables the cookie to be valid as long as the session is open. The cookie will expire once the browser is closed or the session expires.

12. Click Save.


  • No labels