Configure web browsers

IBM® Cognos® Analytics components use default browser configurations. Additional required settings are specific to the browser.

Browser settings required for Cognos Analytics

The following table shows the settings that must be enabled.

Table 1. Enabled browser settings

Browser

Setting

All browsers Allow pop-ups for all Cognos Analytics pages

Firefox

Allow Cookies

Enable Java™

Enable JavaScript

Load Images

Edge

Allow Cookies

Enable JavaScript

Load Images

Safari 5

Enable Java

Enable JavaScript

Block Cookies: Never

Google Chrome

Cookies: Allow local data to be set

Images: Show all images

JavaScript: Allow all sites to run JavaScript

Cookies used by Cognos Analytics components

Cognos Analytics uses the following cookies to store user information.

Table 2. Cookies used by Cognos Analytics components

Cookie

Type

Purpose

AS_TICKET

Session temporary

Created if Cognos Analytics is configured to use an IBM Cognos Series 7 namespace

caf

Session temporary

Contains security state information

Cam_passport

Session temporary

Stores a reference to a user session stored on the Content Manager server.

Administrators can set the HTTPOnly attribute to block scripts from reading or manipulating the CAM passport cookie during a user's session with their web browser.

For more information, see the IBM Cognos Analytics Administration and Security Guide.

cc_session

Session temporary

Holds session information

cc_state

Session temporary

Holds information during edit operations, such as cut, copy, and paste

CRN

Session temporary

Contains the content and product locale information, and is set for all IBM Cognos Analytics users. This cookie is required by the Cognos Analytics legacy components. The newer up cookie is similar to this cookie.

up

Session temporary

Stores the user preferences associated with the content and locale settings, and removes some outdated preferences. The cookie is set for all IBM Cognos Analytics users. This cookie is almost identical as the CRN cookie. However, both cookies are required by Cognos Analytics.

CRN_RS

Persistent

Stores the choice that the user makes for the view members folder in Reporting

PAT_CURRENT_ FOLDER

Persistent

Stores the current folder path if local file access is used, and is updated after the Open or Save dialog box is used

qs

Persistent

Stores the settings that the user makes for user interface elements such as menus and toolbars

userCapabilities

Session temporary

Contains all capabilities and the signature for the current user

usersessionid

Session temporary

Contains a unique user session identifier, valid for the duration of the browser session.

XSRF (Cross-Site Request Forgery)

Session temporary

XSRF tricks a web browser into executing a malicious action on a trusted site for which the user is currently authenticated. XSRF exploits the trust that a site has in a user's browser.

Prevents a web page loaded from domain X from making requests to domain Y, assuming that the user is already authenticated to domain Y.

When first authenticated to Cognos Analytics, XSRF cookie is set. From that point on, all requests will require both the XSRF-TOKEN cookie as well as an HTTP header called X-XSRF-TOKEN.

After upgrading or installing new software, restart the web browser and advise users to clear their browser cache.