How To Add HttpOnly Flag To The ECM Cookie Updated September 08, 2017 20:49 DescriptionThis article describes the Ektron configuration option for setting the HttpOnly flag for the ECM Cookie.ResolutionIn the web.config you will find the following key <!-- This is for setting the HttpOnly attribute for the ECM cookie --><add key="ek_HttpOnly" value="false" /> Set the key to true to enable the setting.