Symantec Access Management

Tech Tip : CA Single Sign-On : Can Cookie Provider request Policy Server for IP validation with the IP present in the session spec ?

  • 1.  Tech Tip : CA Single Sign-On : Can Cookie Provider request Policy Server for IP validation with the IP present in the session spec ?

    Broadcom Employee
    Posted Sep 27, 2016 10:32 AM

    Question :

     

    I want to know if the Cookie Provider can do IP validation with the Session IP.

     

    Answer :

     

    The IP validation against the session IP is done on isAuthorized call to the Policy Server, and by design, the Cookie Provider doesn't request the Policy Server for such authorization.

     

    So the IP validation on the Cookie Provider isn't possible.

     

    KB : TEC1980418