IE 11 cookies & deleting on exit

We seem to be having an issue with IE 11 retaining cookies on websites listed in the favorites.  We have IE 11 settings configured to delete browsing history on exit.  We also have the setting check marked to Preserve Favorites website data.  We have one particular website that we know of that requires cookies to be present to not prompt for security questions on login.  Our users are continually getting prompted for these questions on computers that should be retaining cookies and not prompting them.  Has anyone seen this issue and have a way to make it work correctly?  Thanks
First Bank Of BerneIT DepartmentAsked:
Who is Participating?

[Product update] Infrastructure Analysis Tool is now available with Business Accounts.Learn More

x
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

Blue Street TechLast KnightCommented:
Hi First Bank of Berne,

Actually deleting cookies immediately is a Best Security Practice (we have them set to delete after 1 minute - all of them), deleting cookies on browser close is a Good Practice but leaving them indefinitely is a Bad Practice from a security and privacy standpoint. I don't see how this would pass a security audit. IE has a terrible reputation for storing sensitive data like form data and passwords. Even The Firefox dB which is password protected is insecure. I'd change their default broswers to FF, install Cookie AutoDelete add-in, and install a password manager like Dashlane. It will auto populate form data as well as auto-login to websites. You will have centralized control and its very secure.

If you decide not to take my advice, I'd also look into any add-ons in IE that could be doing so or security software, then I'd look at your GPOs and make sure something is not overriding the defaults.

What OS is IE11 installed on? (IE11 was pre-installed on Windows 8.1, but it can be installed on Windows 7-10)
Is this an RDS environment or standard PC client?
Is this happening to all users or is it isolated to a group?
Try turning off Protected Mode and tell me if the issue persists?
Does this issue occur in other browsers?
Is there anything peculiar about the domain?

I'm assuming you have tried to reset the browser, added the domain in question to the Trusted Sites...

I look forward to hearing from you shortly.
0
Davis McCarnOwnerCommented:
Cookies are separate from Favorite website data so your current settings aren't going to keep them.  Instead, you need a utility to let you keep specific cookies:
http://www.ampsoft.net/utilities/CookieMonster.php
0
Blue Street TechLast KnightCommented:
@Davis McCarn - that is not correct, in IE11 Preserve Favorites website data preserves cookies and temporary Internet files.
0
Prepare for an Exciting Career in Cybersecurity

Help prevent cyber-threats and provide solutions to safeguard our global digital economy. Earn your MS in Cybersecurity. WGU’s MSCSIA degree program curriculum features two internationally recognized certifications from the EC-Council at no additional time or cost.

First Bank Of BerneIT DepartmentAuthor Commented:
We are running on Win 7 in a standard PC client environment.  This is happening to all users.  Our business has standardized on IE as our browser and does not allow other browsers to be utilized.  Nothing odd about the domain at all, it is a regular domain.  We do understand the risks involved in not deleting cookies and temp files and do so on all non-favorite sites.  Thank you for your suggestions and please keep sending more.
0
Blue Street TechLast KnightCommented:
Sorry the notification for your reply slipped through the cracks. You didn't address many of my questions. Namely,

Try turning off Protected Mode and tell me if the issue persists?
Have you cleared your GPOs from interfering with this event?
0
First Bank Of BerneIT DepartmentAuthor Commented:
We have verified that GPOs are not interfering with this issue and have Protected Mode turned off.  It is still clearing cookies when users exit IE11.
0
Blue Street TechLast KnightCommented:
OK thanks for getting back to me!

Try running a fixit. Click on Find and fix problems with security and privacy features in Internet Explorer here: http://support.microsoft.com/mats/ie_performance_and_safety?wa=wsignin1.0

 Also, try reset Internet Explorer settings and check the functionality.

You may be dealing with a redirected URL or obfuscated URL. Say you type in abc.com and the user saves it in their favorites but upon login the URL is redirected to abc123.com. The actual cookie needed to be saved is not and therefore will not store the data necessary for the user once the browser has been exited.

Let me know how it goes!
0

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Vulnerabilities

From novice to tech pro — start learning today.