Enabling user session ID management

About this task

The user-session-ids stanza entry in the [session] stanza of the WebSEAL configuration file allows you to enable and disable the creation of a unique user session ID as an extended attribute in the credential of each client making a request. The default value is "no" (disabled):

[session]
user-session-ids = no

Procedure

To enable the creation of unique user session IDs, set:

[session]
user-session-ids = yes

The unique user session ID is stored in a user's credential as an extended attribute with a name and value:


(credential attribute)
credential attribute
credential attributetagvalue_user_session_id = user-session-id-string

This extended attribute name always appears with a “tagvalue_” prefix to prevent any conflicts with other existing information in the credential.