?
Solved

Sharepoint issue with persistent cookies for remote users

Posted on 2014-01-29
9
Medium Priority
?
932 Views
Last Modified: 2014-02-12
I am running Sharepoint 2010 and have it published via ISA. By default ISA uses session cookies but this has obvious problems for Sharepoint like every time the user opens an office document they get prompted for a username and password.

I understand I can enable persistent cookies for ISA but that opens a can of worms in terms of security. Is there ae way to do this or how are other companies handling this?
0
Comment
Question by:Sid_F
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 5
  • 4
9 Comments
 
LVL 74

Expert Comment

by:Jeffrey Kane - TechSoEasy
ID: 39817181
All you have to do is have users add the Sharepoint site to their Trusted Sites in IE.

See http://support.microsoft.com/kb/932118 for more info.

Jeff
TechSoEasy
0
 
LVL 6

Author Comment

by:Sid_F
ID: 39817210
Unfortunately that doesn't work as the cookie being provided by ISA is a session cookie. Adding the site to trusted sites doesn't change the cookie type to persistent. This would need to be done on the ISA side. Office cannot access a session cookie and hence the prompt for credentials.
0
 
LVL 74

Accepted Solution

by:
Jeffrey Kane - TechSoEasy earned 2000 total points
ID: 39817220
0
Get real performance insights from real users

Key features:
- Total Pages Views and Load times
- Top Pages Viewed and Load Times
- Real Time Site Page Build Performance
- Users’ Browser and Platform Performance
- Geographic User Breakdown
- And more

 
LVL 6

Author Comment

by:Sid_F
ID: 39817316
Yes I have seen the two links but this is relying on the end user to make the right decision. I'm interested to hear from people who have implemented this in a more secure manor to avoid the persistent cookie from remaining on the server.
0
 
LVL 74

Expert Comment

by:Jeffrey Kane - TechSoEasy
ID: 39819271
I don't think you can do it otherwise.  The end user will only make the wrong decision a couple of times.  They will learn.

Jeff
0
 
LVL 6

Author Comment

by:Sid_F
ID: 39819367
I'm thinking there must be an appliance that can do this : )
0
 
LVL 74

Expert Comment

by:Jeffrey Kane - TechSoEasy
ID: 39819871
So, let me get this straight... you have ISA Server in place which is causing the problem, and you want to add an additional device to reverse what ISA is doing?  Might as well just bypass ISA altogether.

But the fact is that even if you change to use Persistent Cookies, users will still need to add the site to their TRUSTED sites in IE in order for IE to share that cookie with the document request.

See http://support.microsoft.com/kb/2019105 for much more in-depth information.

Jeff
0
 
LVL 6

Author Comment

by:Sid_F
ID: 39820306
Yes the additional box will bypass ISA in fact we already have a box doing this but as yet I am unsure if this will do the trick. Adding to trusted sites shouldn't be a problem for users. Thanks.
0
 
LVL 6

Author Closing Comment

by:Sid_F
ID: 39852637
Thanks Jeff.
0

Featured Post

Cyber Threats to Small Businesses (Part 2)

The evolving cybersecurity landscape presents SMBs with a host of new threats to their clients, their data, and their bottom line. In part 2 of this blog series, learn three quick processes Webroot’s CISO, Gary Hayslip, recommends to help small businesses beat modern threats.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

The Cyber News Rundown brings you the latest happenings in cyber news weekly. Who am I? I’m Connor Madsen, a Webroot Threat Research Analyst, and a guy with a passion for all things security. Any more questions? Just ask.
Hey fellow admins! This time, I have a little fairy tale for you. As many tales do, it starts boring and then gets pretty gory. I hope you like it. TL;DR: It is about an important security matter, you should read it if you run or administer Windows …
Learn how to make your own table of contents in Microsoft Word using paragraph styles and the automatic table of contents tool. We'll be using the paragraph styles in Word’s Home toolbar to help you create a table of contents. Type out your initial …
Sometimes it takes a new vantage point, apart from our everyday security practices, to truly see our Active Directory (AD) vulnerabilities. We get used to implementing the same techniques and checking the same areas for a breach. This pattern can re…

762 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question