Which setting in the Cookie Consistency protection feature does a Citrix Engineer need to configure to ensure that all a cookie is sent using TLS only?
Which setting in the Cookie Consistency protection feature does a Citrix Engineer need to configure to ensure that all a cookie is sent using TLS only?
To ensure that a cookie is sent using TLS only, the Citrix Engineer needs to configure the 'Flags to Add in Cookies' option to 'Secure'. Adding the Secure flag to cookies ensures that they are sent only over an SSL/TLS connection, thereby enhancing security by preventing the transmission of cookies over unsecured channels.
B: https://docs.citrix.com/en-us/citrix-adc/current-release/application-firewall/cookie-protection/cookie-consistency-check.html
I stand corrected; I'd say A now
Secure. Add the Secure flag to cookies that are to be sent only over an SSL connection. Browsers that support the Secure flag do not send the flagged cookies over an insecure connection.
When the Secure flag is set, browsers that support this flag will not send the flagged cookies over an insecure connection.
Flags to Add in Cookies > Secure: Add the Secure flag to cookies that are to be sent only over an SSL connection. Browsers that support the Secure flag do not send the flagged cookies over an insecure connection.