My company supports exclusive IBM products in a FISMA environment. We've recently gotten a finding related to session logout with LTPA2 tokens. I'm trying to understand how LTPA2 and JSESSIONID tokens are used. Can anyone help?
Pinned topic WAS and FISMA compliance?
U4UE_xie_zhi 060001U4UE51 PostsACCEPTED ANSWER
Re: WAS and FISMA compliance?2013-09-09T08:50:13Z in response to 4HNK_John_Myers
Please refer the link about LTPA2 http://pic.dhe.ibm.com/infocenter/wasinfo/v8r0/index.jsp?topic=%2Fcom.ibm.websphere.express.doc%2Finfo%2Fexp%2Fae%2Fcwbs_ltpatokens.html
I remember WAS has supported LTPA. I'm sure WASCE has supported this feature.