PingFederate 10.x supports the new Google Chrome changes for SameSite cookies. Using the CoreBlox Token Adapter to exchange tokens with Broadcom/Layer 7 SiteMinder will require some configuration changes. Specifically:
Within the CoreBlox Token Adapter (provided by Ping Identity):
“Secure Cookies” must be ENABLED
“HTTPonly” must be ENABLED
If you intend to pass SameSite cookies to SiteMinder, you must ensure that you have patched your SiteMinder Web Agents so that they will respect the new ACO parameter that applies a SameSite fix. A description of the solution can be found here.
For more information about PingFederate 10.x, please contact Ping Support.