 |
Support & downloads > |
|
|
|
Error "Cookies are not enabled" in Internet Explorer if underscore in the hostname
|
| | | | Problem | You are using Microsoft Internet Explorer browser to schedule a Lotus Sametime Meeting and receive the following error:
"Cookies are not enabled."
This issue does not occur when using other browsers or versions of Internet Explorer earlier than version 5.5. | | | | | Cause | Lotus Sametime is working as designed. This error message is displayed when using Internet Explorer 5.5 and 6.0 or later with the Microsoft Patch MS01-055 (or a Service Pack that also includes this patch). When Internet Explorer is updated, it then becomes compliant with Request for Comments (RFC) 952, which defines and restricts host and domain naming conventions. This compliance is to avoid certain security vulnerabilities with session cookies, as explained in this Microsoft Knowledge Base Article #316112 excerpt:
"A potential security vulnerability exists in Internet Explorer versions 5.5 and 6.0 in which a malicious user could create a URL that allows a Web site to gain unauthorized access to cookies that are stored on a client computer and then (potentially) modify the values that are contained in these cookies. Because some Web sites use cookies that are stored on client computers to store sensitive information, this security vulnerability could expose personal information. Security patch MS01-055 corrects this security vulnerability by preventing servers with improper name syntax from setting cookies names."
The reason that the error message appears is that the cookie is never created by the browser. The RFC 952 document defines the proper syntax for a host/domain name.
"A "name" (Net, Host, Gateway, or Domain name) is a text string up to 24 characters drawn from the alphabet (A-Z), digits (0-9), minus sign (-), and period (.). Note that periods are only allowed when they serve to delimit components of "domain style names". (See RFC-921, "Domain Name System Implementation Schedule", for background). No blank or space characters are permitted as part of a name. No distinction is made between upper and lower case. | | | | | Resolving the problem | | Refer to Microsoft Support Articles 316112 and 149044 for more information about how Internet Explorer handles cookies.
You can use any one of the following workarounds:
- Change the fully qualified host name of the server so that it is compliant with the naming conventions defined in RFC 952.
- Create a URL/Redirection document so that users are redirected to servername.domain.com instead of server_name.domain.com.
- Change session authentication on the Server document's Internet Protocols tab/Domino Web Engine tab to Disabled. Because the Sametime Web Administration Tool requires Web SSO to be set to enabled (Single-Server or Multi-Server), you will need to implement a workaround as documented in "Sametime: Unable to Administer the Server when Web SSO is Disabled" (#1090310 ).
| | | | | | | | |
|
|
| IBM, the IBM logo and ibm.com are trademarks of International Business Machines Corp., registered in many jurisdictions worldwide. Other product and service names might be trademarks of IBM or other companies. A current list of IBM trademarks is available on the Web at "Copyright and trademark information" at www.ibm.com/legal/copytrade.shtml. |
|
|
|
|
| Please take a moment to complete this form to help us better serve you. |
|
 |
|
|
|
|
|
|
| Product categories: |
|
| | Software | |
| | Organizational Productivity, Portals & Collaboration | |
| | Real-time & Team Collaboration | |
| | Lotus Sametime | |
| | Web Conferences/Meetings | |
|
| Operating system(s): |
| |
AIX, Linux, Mac OS X, Solaris, Windows, i5/OS
|
|
| Software version: |
| |
3.0, 3.1, 6.5.1, 7.5, 7.5.1, 8.0
|
|
| Reference #: |
| |
1112062
|
|
| IBM Group: |
| | Software Group |
|
| Modified date: |
| | 2009-04-14 |
|
|
