Skip to Content
avatar image
Former Member

The SAP_SESSIONID__ Cookie SAP GATEWAY

Hi all,

I am currently working on SAP NETWEAVER 7.5 with FIORI applications. To enter the Fiori Launchpad I need to enter a sample URL: SAPFIORI.DOMAIN.COM: / <...> whereby the Gateway when it generates the cookie 'SAP_SESSIONID_ _ ' The domain is ' SAPFIORI.DOMAIN.COM'. My question is: Is it possible to configure a parameter so that the domain is in the cookie 'SAP_SESSIONID_ _ ' sea '. DOMAIN.COM' and does not contain the subdomain?.

I have searched and only find this, which applies to the MYSAPSSO2 cookie:

'Domain relaxing

The Netweaver AS Java offers domain relaxing functionality. Using the ume property ume.logon.security.relax_domain.level the server can be configured to strip one or more sub-domains from the FQDN when the MYSAPSSO2 cookie is being created. For example, if the value is 2 and the logon ticket is issued by the server server.support.mycompany.com, the MYSAPSSO2 cookie’s domain attribute value will be .mycompany.com.

This domain relaxing widens the scope of the MYSAPSSO2 cookie so that the browser will send it with all requests to domain mycompany.com and its sub-domains rather than just with requests to support.mycompany.com and its sub-domains.

The domain relaxing feature does not allow SSO between two completely different domains since it only strips away one or more subdomains from the cookie's domain attribute value and the root domain in the attribute remains unchanged.'

(https://wiki.scn.sap.com/wiki/display/ASJAVA/The+MYSAPSSO2+cookie)

Thanks

Add comment
10|10000 characters needed characters exceeded

  • Get RSS Feed

0 Answers