Symantec Access Management

 View Only

 Mini cookie session scheme and SSO

MUN-FAI YUE's profile image
MUN-FAI YUE posted May 15, 2023 12:59 AM

Hi,

We want to protect 2 x new URLs, namely:

  1. https://app1.demo.loc
  2. https://app2.demo.loc

We plan to setup 2 x access gateway (separate VMs) to protect these 2 x URLs, namely:

  1. https://ag1.demo.loc (VM1) --> https://app1.demo.loc
  2. https://ag2.demo.loc (VM2) --> https://app2.demo.loc

Due to business needs, only minicookie will be used for these 2 x URLs. 

Currently, NO persistent session store for policy server.

Questions:

  1. Is SSO possible between app1 and app2?
  2. If yes, how is session data passed between ag1 (VM1) and ag2 (VM2)?

Any advise will be much appreciated.