PAM Browser and Cookies
search cancel

PAM Browser and Cookies


Article ID: 16979


Updated On:


CA Privileged Access Manager - Cloakware Password Authority (PA) CA Privileged Access Manager (PAM)


My Web Page is issuing a session cookie to control the login process.

Is the CA PAM browser capable of handling such session cookies?


Release: All versions of CA PAM as of October 2023
Component: CA PAM


Currently by design, for security reasons the CA PAM Browser does not allow persistent session cookies.

The cookie issued by the Web-site remains valid in the life time of this PAM Browser session only.

Having persistent cookies, can let another PAM user use that session cookie to access the previously used session of another user which creates a vulnerability.