Remove SMSESSION cookie with mod_headers module

Document ID : KB000072450
Last Modified Date : 01/03/2018
Show Technical Document Details
12.52 SP1 CR07 WebAgent on Apache 2.4.25 sets two SMSESSION cookies in HTTP_COOKIE request header variable when SessionGracePeriod (30sec) has passed after the previous SMSESSION cookie was issued.
The length of two SMSESSION cookies exceeds the limit of request header size of a backend application.
Can we remove the SMSESSION cookies in the HTTP_COOKIE request header variable with the mod_headers module in Apache HTTP Server?
Yes, you can remove the SMSESSION cookies from the HTTP request header.
SMSESSION cookies are necessary for maintaining user sessions between Web browser and WebAgent, unnecessary for backend applications.