Cookies used by Sitecore

Current version: 9.1

Sitecore Experience Platform issues cookies to website visitors and client users. The following tables describe the purpose of each cookie and link to configuration options where applicable.


For a list of the cookies used by the Sitecore Content Hub, see Cookie usage.

Sitecore visitor cookies

The following cookies can be issued to website visitors:

Cookie name


Configuration options


Functional cookie. Stores the name of the context site. Used by the Sitecore Experience Accelerator for wireframe images.

Sample value: docsite


Used by the Sitecore Experience Accelerator only. Expiry is set to 1 year.

Used by SXA privacy component.


The privacy component only sets a cookie - it does not disable tracking or any other forms of processing if consent is revoked.


Used by the Experience Optimization feature to store information about the test variant used on the current page.


Sitecore's analytics cookie. Stores an ID that represents the device (issued by Sitecore) and a true/false value indicating whether visitor classification was guessed (robot or not robot). Used by the tracker to identify a returning contact. Only issued if tracking is enabled.

Sample value: 26c532a61c5247719cc8b68b0c41f7e4|False


Customization is required to disable tracking on a per-visitor basis and prevent Sitecore from creating the cookie.

Configure cookie lifetime


The default ASP.NET session ID cookie.

Configured on the sessionState element in web.config.


The default ASP.NET anti-XSRF cookie.


Stores context language of the current site.

Sample value: docsite#en

Sitecore client user cookies

The following cookies are issued to users of the Sitecore client interfaces (for example, the Experience Editor):

Cookie name



Authentication cookie. Set for Sitecore client users if you use Sitecore.Owin.Authentication.


Authentication cookie. Set for Sitecore client users in Preview mode if you use Sitecore.Owin.Authentication.


Used by device preview mode.


Used by device preview mode.


Used by Experience Editor for previewing and setting date and time in Editor Mode.


Preview Shell User Cookie used when accessing the shell site during preview.


RTE Shell User Cookie used to set up Editor.


State of the “Content tree” option (check box), located on the ribbon of Content Editor.


Width of the content tree panel in the Content Editor. Appears after resizing by a user.


Usually refers to Sitecore item’s language or Sitecore client language.


Used for the file upload/download interface. For internal use only.


Preserves the selected language for a message. For internal use only.


Sitecore’s client language.


Used by Experience Editor to indicate Edit, Preview, or Normal mode.


Used by Experience Editor to set or get the value from the Date or DateTime field.


Used by Experience Editor to indicate Debug mode.


Used by Experience Editor to enable or disable profiling.


Used by Experience Editor to enable or disable borders.


Used by Experience Editor to enable or disable Sitecore Information.


Used by Experience Editor to enable or disable Sitecore Trace.


Default authentication cookie if you do not use Sitecore.Owin.Authentication.


Sitecore license assumes a limited number of concurrent users (tickets). Sitecore keeps track of every user logged in to the system and assigns a Sitecore user ticket to each.


Start page URL for the Shell site.


Protection against cross-site request forgery (CSRF) attacks.


Shockwave Flash version.


Used by Experience Editor to indicate last page mode.


Used by Experience Editor, Cookie for Device Id-


Position preferences of the Floatie form.


For internal use only.

Do you have some feedback for us?

If you have suggestions for improving this article,