Tech Tip : CA Single Sign-On : Can Cookie Provider request Policy Server for IP validation with the IP present in the session spec ?

Discussion created by Patrick-Dussault Employee on Sep 27, 2016

Question :


I want to know if the Cookie Provider can do IP validation with the Session IP.


Answer :


The IP validation against the session IP is done on isAuthorized call to the Policy Server, and by design, the Cookie Provider doesn't request the Policy Server for such authorization.


So the IP validation on the Cookie Provider isn't possible.


KB : TEC1980418