It seems like your browser didn't download the required fonts. Please revise your security settings and try again.

Login Sign Up Contact & Support

United States – English (GMT-5)

Email Protection

Total Email Protection

Email Gateway Defense (Email Security)

Impersonation Protection (Sentinel)

Cloud-to-Cloud Backup

Cloud Archiving Service

Security Awareness Training (PhishLine)

Email Security Gateway

Incident Response

Message Archiver

WAF-as-a-Service

Web Application Firewall

Cloud Security Guardian

Load Balancer ADC

Vulnerability Manager

Web Security Agent

Vulnerability Remediation Service

WAF Control Center

Active DDoS Prevention

Reporting Server

CloudGen Firewall

CloudGen Access

Network Access Client

Firewall Insights

Web Security Gateway

Firewall Policy Manager

RMM (Managed Workplace)

Managed PhishLine

Intronis Backup

MSP Knowledgebase

MSP – Sales Enablement

NextGen Firewall X

Campus Help Center / Reference

TechSummit 2019

Support Services

Network Security

Barracuda Web Application Firewall

Overview Documentation Training Certification Materials

Email Protection

Total Email Protection

Email Gateway Defense (Email Security)

Impersonation Protection (Sentinel)

Cloud-to-Cloud Backup

Cloud Archiving Service

Security Awareness Training (PhishLine)

Email Security Gateway

Incident Response

Message Archiver

WAF-as-a-Service

Web Application Firewall

Cloud Security Guardian

Load Balancer ADC

Vulnerability Manager

Web Security Agent

Vulnerability Remediation Service

WAF Control Center

Active DDoS Prevention

Reporting Server

CloudGen Firewall

CloudGen Access

Network Access Client

Firewall Insights

Web Security Gateway

Firewall Policy Manager

RMM (Managed Workplace)

Managed PhishLine

Intronis Backup

MSP Knowledgebase

MSP – Sales Enablement

NextGen Firewall X

Campus Help Center / Reference

TechSummit 2019

Support Services

Network Security

Login Sign Up Contact & Support

United States – English (GMT-5)

Back to Knowledgebase

Why am I receiving a ?Cookie Encryption Key Expired? alert on my Barracuda Web Application Firewall?

Type: Knowledgebase
Date changed: 2 years ago

Solution #00003931

Scope:
All Barracuda Web Application Firewalls.

Answer:

The Barracuda Web Application Firewall allows sharing of a common encryption key to encrypt and decrypt user session data. Cookies are used to store the encrypted state information on browsers and other user agents to avoid traffic interruption during failover on High Availability deployments.

The Cookie Encryption Key can be configured with an expiration date; when the expiration date is reached an Alert is logged. The expiry timer can be modified from the Advanced > System Configuration tab. The format is one of yyyy-mm-dd hh:mm:ss.

Year ? Valid range is 1971 to 2037
Month ? Valid range is 01 to 12
Day ? Valid range is 01 to 31
Hours ? Valid range is 00 to 12
Minutes ? Valid range is 00 to 59
Seconds ? Valid range is 00 to 59

Link to This Page:

https://campus.barracuda.com/solution/50160000000HYkDAAW

Additional Resources

More

Print Share Page