Reference - Xperience cookies

The following table describes the cookies used in Xperience and lists the level of each cookie:

Cookie name






1 year

Specifies which cookies are allowed by the visitor.



session end

Keeps the user session ID for security reasons.

CMSCsrfCookieSystemsession endStores a security token that the administration interface uses to validate all form data submitted via POST requests. Helps protect against Cross site request forgery.
CMSVirtualContextIdentitySystemsession end

Stores a token that authenticates users in the administration interface when previewing or editing live site content (via virtual context URLs).



1 year

Stores the visitor's preferred content culture.



1 day

Stores the name of the current visual theme to provide proper design to dialog windows.

CMSWindowsUserEssentialsession endStores information for administration interface users who were imported from an Active Directory domain during authentication.


set in web.configStores the user's encrypted authentication ticket when using forms authentication.
KenticoCookiePolicyTestEssential1 minuteA dummy cookie used to test whether the user's browser blocks 3rd party cookies. Does not carry any informational value.
CMSAB<ABtestname>Essential2 months

Used to maintain consistent content of A/B tested pages for visitors who have not given consent to be tracked (i.e. do not accept cookies of the Visitor level).

Stores the identifier of the page variant assigned to the visitor. The value is transferred to the CMSAB<ABtestname> cookie if the visitor later gives tracking consent and views the tested page.



1 year

Stores the preferred UI culture of the user.



1 day

Stores the user's current view mode in the Pages application (Edit, Preview, Design, etc.).

CMSImpersonationEditorsession endStores user information when impersonating a different user in the administration interface.



1 month

User's custom word dictionary kept by the spell checker of rich text field editor.

DisplayContentInUIElementDesignModeEditorsession end

Remembers the user's setting of the Web part content check box on the Design tab of UI elements.

CMSMacroDesignerTabEditor1 dayRemembers the last active tab of the Edit macro condition dialog.
CMSSplitModeEditorsession endRemembers the state of the language version split-view mode when editing multilingual websites.
CMSEdABSelectorState<ABtestname>Editor2 monthsStores the state of the selectors on the A/B test overview page.
CMSWebPartToolbarCategoryEditor1 month

Stores the selected web part category in the web part toolbar when editing dashboard templates on the Design tab.

CMSWebPartToolbarCategoryUIEditor1 monthStores the selected web part category in the web part toolbar when editing UI templates on the Design tab.
CMSWebPartToolbarMinimizedEditor1 monthRemembers if the user minimized the web part toolbar when editing UI templates on the Design tab.
CMSSessionTokenEditor1 yearStores the token used by the web service that provides the advanced workflow and marketing automation designer.
CMSMASelectedViewEditor2 monthsStores the active view mode for the Process tab of individual marketing automation processes (Design mode or Contacts mode).



20 years

Indicates if the visitor is new or returning. Used for tracking the visitors statistics in Web analytics.

CMSAnalyticsDataVisitor20 minutesPersists user-related data and is used by Web analytics to keep track of exit page candidates.
SourceVisitor50 yearsStores the channel from which the visitor arrived as part of a campaign (e.g., email, Facebook, Twitter, etc.). Based on the utm_source query string parameter.



50 years

Stores the name of the campaign assigned to the visitor.

ContentVisitor50 yearsStores the specific content item through which the visitor arrived as part of a campaign. Based on the utm_content query string parameter.



50 years

Stores the GUID of the contact related to the current site visitor. Used to track activities on the website.



2 months

Added for visitors who view A/B tested pages. Tracks conversions for the test and maintains consistent page content for the visitor.

Stores JSON data including the identifier of the page variant assigned to the visitor, the list of performed conversions, and an indicator of whether the visitor is included in A/B testing.



1 year

Stores a GUID reference to the user's shopping cart. Allows the system to recover the shopping cart for unregistered customers, even after it is cleared from the cache (for example after an application restart).

CMSLandingPageLoadedVisitor20 minutesIndicates that the landing page has already been visited and the Landing page activity is not logged again for the current visitor. Expires after 20 minutes and the expiration period of the key is renewed every time the website is accessed again.

Third party cookies

Third partyCookie levelNotes


-CKEditor cookies may be stored for users working with the rich text field editor.

Web storage (session)

The following values are stored in the browser Session Storage when using the Xperience administration interface:

Storage keyValue
cmsLatestAppStores the GUID of the current Xperience application in certain scenarios.
Kentico.DisplayedWidgetVariants|<page GUID>Stores identifiers of page builder widgets and their selected personalization variants for individual pages displayed in the Pages application.
Related pages