Skip to main content
Version: 8.2

Creatio Platform Cookies

Creatio may use the following types of cookies and similar technologies to operate and improve products and services offered through the sites (Creatio Services), Application Hub functionality available in Creatio cloud for user accounts connected to an organization account (Application Hub, Cloud), and any other digital properties that Creatio owns or control.:

  • Essential / strictly necessary cookies required for the operation of the Creatio Services. For example, this includes cookies that let you log in to secure areas. Strictly necessary cookies facilitate the operation of Creatio Services and websites. Without these cookies, parts of Creatio Services and websites will not function properly.
  • Functional cookies that remember choices you make and recognize you when you return. This enables Creatio to personalize content, greet you by name and remember your preferences (for example, your choice of language or region) or allow the pre-population of certain resource request forms, making it easier for you to access Creatio content.
  • Analytical / performance cookies that collect information about how you use Creatio Services. They allow Creatio to recognize and count the number of visitors and to see how visitors move around in Creatio Services. This helps us improve the way software works. These cookies may be sometimes placed by third-party providers of web traffic analysis services.

See more details on cookies and how Creatio processes cookie data in the Creatio Privacy Policy.

This article covers only cookies used by Creatio Services, but does not include cookies found in Creatio Marketplace Applications. For the details of each Marketlace app, please read the corresponding app's documentation.

This table describes the cookies used by Creatio platform:

Cookie Name

Duration

Cookie Type

Description

Product

ASPXAUTH

Session cookie

Strictly necessary

Stores information about the authorized status of the user and to provide access to protected resources only to authorized users.

May store identifiable data.

Creatio Services

Application Hub, Cloud

Studio Creatio, free edition

Creatio Success Portal

BPMLOADER

Session cookie

Strictly necessary

Required for the website to work properly.

Stores the unique IDs of anonymous sessions.

Does not store identifiable data.

Creatio Services

Application Hub, Cloud

Studio Creatio, free edition

Creatio Success Portal

BPMSESSIONID

Session cookie

Strictly necessary

Required for the website to work properly.

Stores a unique ID of the session.

May store identifiable data.

Creatio Services

Application Hub, Cloud

Studio Creatio, free edition

Creatio Success Portal

BPMCSRF

Session cookie

Strictly necessary

Protects against cross-site requests (CSRF).

Stores a unique token that is checked by the server to confirm the legitimacy of requests, thereby preventing possible CSRF attacks.

Does not store identifiable data.

Creatio Services

Application Hub, Cloud

Studio Creatio, free edition

Creatio Success Portal

UserName

Cookie exists <number-of-days-to-remember-cookie> set in system setting UserNameExpireDays.

Disabled by default.

Functional cookie (Optional)

Stores a user ID for easier log in to the platform.

Set after successful user authorization. Can be activated and deactivated on the customer’s level by setting the UserNameExpireDays system setting.

To activate, set the system setting "User name expiration term (days)" ("UserNameExpireDays" code) to <number-of-days-to-remember-cookie>.

To deactivate, set the system setting "User name expiration term (days)" ("UserNameExpireDays" code) to 0.

May store identifiable data.

Creatio Services

Application Hub, Cloud

Creatio Success Portal

UserType

Session cookie

Strictly necessary

Stores user type. Set after successful user authorization.

Does not store identifiable data.

Creatio Services

Application Hub, Cloud

Creatio Success Portal

SsoSessionId

Session cookie

Strictly necessary (for Single Sign-On functionality)

Stores the session ID of a user authenticated via the Single Sign-On mechanism.

May store identifiable data

Creatio Services

Application Hub, Cloud

CookieConscent

1 year

Strictly necessary

Stores cookie consent preferences.

Does not store identifiable data.

Creatio corporate websites

Application Hub, Cloud

Studio Creatio, free edition

_ga

1 year

Analytical / performance

Tracks user activities inside Creatio Services.

May store identifiable data.

Creatio Services (Cloud deployment)

Application Hub, Cloud

Studio Creatio, free edition

Creatio Success Portal

_ga_*

1 year

Analytical / performance

Tracks user activities inside Creatio Services.

May store identifiable data

Creatio Services (Cloud deployment)

Application Hub, Cloud

Studio Creatio, free edition

Creatio Success Portal

verto_session_uuid

1 day

Strictly necessary (needed for Webitel integration)

Stores Verto telephony session ID for successful integration with Webitel.

Does not store identifiable data.

Creatio Services

visid_incap_*

1 year

Strictly necessary

Encapsulates DDoS Protection and Web Application Firewall. A cookie in which sessions are bound to a specific visitor, with a visitor representing a specific computer. This helps identify clients that have already visited the site.

Does not store identifiable data.

Creatio Services

Application Hub, Cloud

Studio Creatio, free edition

Creatio Success Portal

incap_ses_*

Session cookie

Strictly necessary

Encapsulates DDoS Protection and Web Application Firewall. A cookie in which HTTP requests are related to a specific session.

Does not store identifiable data.

Creatio Services

Application Hub, Cloud

Studio Creatio, free edition

Creatio Success Portal

.AspNet.SharedCookie

Session cookie

Strictly necessary

Provides Single Sign-On capability to Creatio Services.

Does not store identifiable data.

Creatio Services

CreatioIdentityServerAuthenticated

Session cookie

Strictly necessary

Stores the Creatio Identity Service authentication state. The cookie is needed for provision of access to Creatio Services.

Does not store identifiable data.

Creatio Services

Application Hub, Cloud

Studio Creatio, free edition

ExistingAlmUser

Session cookie

Strictly necessary

Stores the user’s status in Application Hub, Cloud. The cookie is needed for provision of access to Application Hub, Cloud.

Does not store identifiable data.

Creatio Services

Application Hub, Cloud

Studio Creatio, free edition

idsrv.session

Session cookie

Strictly necessary

Stores Creatio Identity Service session information.

The cookie is needed for authentication in the Creatio Identity Service to access different Creatio Services.

Does not store identifiable data.

Creatio Services

Application Hub, Cloud

Studio Creatio, free edition

sticky-session-id

Session cookie

Strictly necessary

Stores Creatio Istio Service sticky session information.

The cookie is needed for the Creatio Istio Service to authenticate traffic between different microservices in Creatio Services.

Does not store identifiable data.

Creatio Services

Application Hub, Cloud

Studio Creatio, free edition

product

Session cookie

Strictly necessary

Stores the Creatio trial product type selected by the user.

The cookie is needed for Application Hub, Cloud to work properly.

Does not store identifiable data.

Application Hub, Cloud

bpmHref

180 days

Strictly necessary

Required for the website to work properly.

Stores the complete web address (full URL) of the current page the user is visiting.

May store identifiable data.

Creatio Services

bpmRef

180 days

Strictly necessary

Required for the website to work properly.

Stores the web address of the page the user came from before visiting the current page.

Does not store identifiable data.

Creatio Services

TotpSetupToken

20 mins

Strictly necessary

Required for two-factor authentication to work properly. Stores the token to bind authenticator app.

May contain identifiable data.

Creatio Services

FirstFactor

20 mins

Strictly necessary

Required for two-factor authentication to work properly. Stores first factor authentication data.

May contain identifiable data.

Creatio Services

PasswordRecover

20 mins

Strictly necessary

Required for the password recovery functionality to work. Stores temporary authentication state in a process of password recovery.

May contain identifiable data.

Creatio Services

Creatio Services can run without the use of functional and analytical / performance cookies, but doing so can reduce functionality. The impact on functionality depends on the purpose of the blocked cookie.

Creatio does not currently provide functionality for cookie consent management.

See also

Recommended information security settings

Set up content security policy

Set up secure storage of sensitive data using Vault