|Applies To||Access Manager Agents 4.7|
|Issue||AxM Agent 4.7.0.X: Support for "httpOnly" added|
The Access Manager 4.7 agents, when originally released, did not contain this functionality.
|Resolution||The httpOnly functionality has been added to the 4.7 Agents. The apache agent for Red Hat 4/5 contains this beginning hot fix 18.104.22.168. For IIS, 22.214.171.124.|
|Notes||Additionally, The following information about httpOnly with relation to browsers is useful to note:|
Microsoft Internet Explorer has supported the security feature HttpOnly cookies since IE 6 SP1.
Mozilla Firefox has supported httpOnly since version 126.96.36.199, released July 2007.
For additional browser support of httpOnly, you will want to contact the browser vendor.
|Legacy Article ID||a50160|