February 18, 2020.
- In March, Microsoft will be inhibiting the connection to an Active Directory with insecure LDAP protocols. So, connections to AD will no longer accept insecure connections. Please see, https://support.microsoft.com/en-us/help/4520412/2020-ldap-channel-binding-and-ldap-signing-requirement-for-windows
- Microsoft has begun changing the default behavior of session cookies this month, February. The browsers (Chrome, Firefox, and Safari) will start to enforce tighter controls around cookies perceived as “cross-site”. So, if you login to your site using your site address and start to experience issues seeing your site upon login or logging in successfully but start seeing issues in getting some of your pages to display, this could be a result of the increase of security that prevents cross-site cookies to pass from page to page. Or, some that use mapped domains may experience issues with the prevention of passing cross-site cookies, and therefore pages won’t display.
So, to help reduce issues with Microsoft’s new same site cookie implementation, if you’re experiencing any, login to your site from the main Web Services site, https://ws.gc.cuny.edu rather than use your site address. Please see, https://web.dev/samesite-cookies-explained/
If you are experiencing issues related to the above, please let us know via opening a TRACKIT ticket, itservices@gc.cuny.edu