Enabling user session ID management
About this task
The user-session-ids stanza entry in the [session] stanza of the WebSEAL configuration file allows you to enable and disable the creation of a unique user session ID as an extended attribute in the credential of each client making a request. The default value is "no" (disabled):
[session]
user-session-ids = no
Procedure
To
enable the creation of unique user session IDs, set:
[session]
user-session-ids = yes
The unique user session ID is stored in a user's credential as an extended attribute with a name and value:
(credential attribute)
credential attribute
credential attributetagvalue_user_session_id = user-session-id-string
This extended attribute name always appears with a “tagvalue_” prefix to prevent any conflicts with other existing information in the credential.