Chat now with support
Chat with Support

Identity Manager 8.1 - Web Application Configuration Guide

Using Transport Layer Security 1.1 and above with Microsoft .NET Framework

One Identity tools are currently shipped based on Microsoft .NET Framework 4.7.2. To establish the connection, Microsoft .NET Framework 4.7.2 uses maximum Transport Layer Security (TLS) 1.0 by default. In order to use later versions of TSL, the registry key must be altered in Windows.

Set the following registry subkeys in the Windows Registry Editor.

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\.NETFramework\v4.0.30319]
"SchUseStrongCrypto"=dword:00000001

[HKEY_LOCAL_MACHINE\SOFTWARE\\Wow6432Node\Microsoft\.NETFramework\v4.0.30319]
"SchUseStrongCrypto"=dword:00000001

Detailed information about this topic

Enable same site attribute for ASP.NET session cookies

To avoid Cross Site Request Forgery (CSRF), you can set the same site attribute in your ASP.NET session cookies.

To set the same site attribute for all .NET versions from 4.7.2.

  1. Open the configuration file web.config for the chosen web application.

  2. Enter the following code snippet in the <configuration> section:

    <system.web>
        <httpCookies sameSite="Strict" />
    </system.web>
  3. Save the file.

To set the same site attribute for all .NET versions to 4.7.2.

  1. Download the URL Rewrite extension: https://www.iis.net/downloads/microsoft/url-rewrite
  2. Open the configuration file web.config for the chosen web application.

  3. Enter the following code snippet in the <system.webServer> section:

    <rewrite>
      <outboundRules>
    	<clear />
    	<rule name="Add SameSite" preCondition="No SameSite">
    	  <match serverVariable="RESPONSE_Set_Cookie" pattern=".*" negate="false" />
    	  <action type="Rewrite" value="{R:0}; SameSite=lax" />
    	  <conditions>
    	  </conditions>
    	</rule>
    	<preConditions>
    	  <preCondition name="No SameSite">
    		<add input="{RESPONSE_Set_Cookie}" pattern="." />
    		<add input="{RESPONSE_Set_Cookie}" pattern="; SameSite=lax" negate="true" />
    	  </preCondition>
    	</preConditions>
      </outboundRules>
    </rewrite>	
  4. Save the file.
Related Documents

The document was helpful.

Select Rating

I easily found the information I needed.

Select Rating