IE 11 cookies & deleting on exit

We seem to be having an issue with IE 11 retaining cookies on websites listed in the favorites.  We have IE 11 settings configured to delete browsing history on exit.  We also have the setting check marked to Preserve Favorites website data.  We have one particular website that we know of that requires cookies to be present to not prompt for security questions on login.  Our users are continually getting prompted for these questions on computers that should be retaining cookies and not prompting them.  Has anyone seen this issue and have a way to make it work correctly?  Thanks
First Bank Of BerneIT DepartmentAsked:
Who is Participating?
 
Blue Street TechLast KnightCommented:
OK thanks for getting back to me!

Try running a fixit. Click on Find and fix problems with security and privacy features in Internet Explorer here: http://support.microsoft.com/mats/ie_performance_and_safety?wa=wsignin1.0

 Also, try reset Internet Explorer settings and check the functionality.

You may be dealing with a redirected URL or obfuscated URL. Say you type in abc.com and the user saves it in their favorites but upon login the URL is redirected to abc123.com. The actual cookie needed to be saved is not and therefore will not store the data necessary for the user once the browser has been exited.

Let me know how it goes!
0
 
Blue Street TechLast KnightCommented:
Hi First Bank of Berne,

Actually deleting cookies immediately is a Best Security Practice (we have them set to delete after 1 minute - all of them), deleting cookies on browser close is a Good Practice but leaving them indefinitely is a Bad Practice from a security and privacy standpoint. I don't see how this would pass a security audit. IE has a terrible reputation for storing sensitive data like form data and passwords. Even The Firefox dB which is password protected is insecure. I'd change their default broswers to FF, install Cookie AutoDelete add-in, and install a password manager like Dashlane. It will auto populate form data as well as auto-login to websites. You will have centralized control and its very secure.

If you decide not to take my advice, I'd also look into any add-ons in IE that could be doing so or security software, then I'd look at your GPOs and make sure something is not overriding the defaults.

What OS is IE11 installed on? (IE11 was pre-installed on Windows 8.1, but it can be installed on Windows 7-10)
Is this an RDS environment or standard PC client?
Is this happening to all users or is it isolated to a group?
Try turning off Protected Mode and tell me if the issue persists?
Does this issue occur in other browsers?
Is there anything peculiar about the domain?

I'm assuming you have tried to reset the browser, added the domain in question to the Trusted Sites...

I look forward to hearing from you shortly.
0
 
Davis McCarnOwnerCommented:
Cookies are separate from Favorite website data so your current settings aren't going to keep them.  Instead, you need a utility to let you keep specific cookies:
http://www.ampsoft.net/utilities/CookieMonster.php
0
Get Certified for a Job in Cybersecurity

Want an exciting career in an emerging field? Earn your MS in Cybersecurity and get certified in ethical hacking or computer forensic investigation. WGU’s MSCSIA degree program was designed to meet the most recent U.S. Department of Homeland Security (DHS) and NSA guidelines.  

 
Blue Street TechLast KnightCommented:
@Davis McCarn - that is not correct, in IE11 Preserve Favorites website data preserves cookies and temporary Internet files.
0
 
First Bank Of BerneIT DepartmentAuthor Commented:
We are running on Win 7 in a standard PC client environment.  This is happening to all users.  Our business has standardized on IE as our browser and does not allow other browsers to be utilized.  Nothing odd about the domain at all, it is a regular domain.  We do understand the risks involved in not deleting cookies and temp files and do so on all non-favorite sites.  Thank you for your suggestions and please keep sending more.
0
 
Blue Street TechLast KnightCommented:
Sorry the notification for your reply slipped through the cracks. You didn't address many of my questions. Namely,

Try turning off Protected Mode and tell me if the issue persists?
Have you cleared your GPOs from interfering with this event?
0
 
First Bank Of BerneIT DepartmentAuthor Commented:
We have verified that GPOs are not interfering with this issue and have Protected Mode turned off.  It is still clearing cookies when users exit IE11.
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.