SSO May Fail When Domains Contain Top Level Names
 Technote (FAQ)
 
Problem
Domains which consist only of two positions and the first position contains one of the top level domains, Microsoft's Internet Explorer will not accept the cookie and SSO will not be possible.

Other browsers, such as Netscape, Opera, and Mozilla will accept the cookie for SSO.

For example
An SSO domain is defined as "mil.no" will fail, while the domain defined as "xyx.mil.no" will work. Additional examples which would cause it to fail: com.ca, net.ca, edu.us

The following domains may fail in this scenario:
.com, .net, .org, .edu, .gov, .mil, .int
 
Cause
Microsoft Internet Explorer will not accept cookies with this configuration.
 
Solution
Add another suffix position to domain name.

Example: Add "austin" to the "com.ca" domain to make it "austin.com.ca".

 
 
 


Document Information


Product categories: Software > Application Servers > Distributed Application & Web Servers > WebSphere Application Server
Operating system(s): HP-UX
Software version: 4.0
Software edition:
Reference #: 1173575
IBM Group: Software Group
Modified date: Aug 16, 2004