ADFS Cookie Handling Issue with SamlSession

Mihaly Szonyi 10 Reputation points
2024-11-21T10:50:14.8466667+00:00

I'm experiencing issues with ADFS cookie handling. After creating a Relying Party Trust, everything seemed to work fine initially. However, when calling ADFS repeatedly with the same user, the SamlSession cookie size gradually increases, leading to a 400 error with the message: "Header field too long."

Upon inspecting the headers, I found multiple SamlSession cookies (SamlSession, SamlSession1, ..., SamlSession7). The first SamlSession cookie contains user information and some UUID, while the others consist of concatenated UUIDs separated by the & symbol, which I believe refer to assertion IDs.

What steps can be taken to resolve this issue?

Active Directory Federation Services
Active Directory Federation Services
An Active Directory technology that provides single-sign-on functionality by securely sharing digital identity and entitlement rights across security and enterprise boundaries.
1,278 questions
{count} votes

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.