The following table describes the cookies used in Kentico and lists the level of each cookie:
Specifies which cookies are allowed by the visitor.
Keeps the user session ID for security reasons.
|CMSCsrfCookie||System||session end||Store's a security token that the system uses to validate all form data submitted via POST requests. Helps protect against Cross site request forgery.|
Stores the visitor's preferred content culture.
Indicates if the visitor has been redirected to the mobile version of the website by the Mobile device redirection web part.
Stores the name of the current visual theme to provide proper design to the dialog windows.
|3rd party cookie|
Live ID authentication cookie.
Keeps a list of Question-Answer forum posts in which the user voted for an answer to prevent repeated votes.
Keeps a list of polls where the user voted to prevent repeated votes.
Keeps a list of pages that the user rated to prevent repeated votes.
Indicates that the visitor has switched to the desktop (default) version of the website from a specific device profile.
|CMSWindowsUser||Essential||session end||Stores information for users who were imported from an Active Directory domain during authentication.|
|set in web.config||Stores the user's encrypted authentication ticket when using forms authentication.|
Stores the preferred UI culture of the user.
Stores the user's current view mode (Edit, Preview, Design, etc.).
|CMSImpersonation||Editor||session end||Stores user information when impersonating a different user in the administration interface.|
User's custom word dictionary kept by the spell checker.
Remembers the user's setting of the Web part content checkbox on the Design tab (for example in the Pages application).
Remembers the user's setting of the Web part content check box on the Design tab of UI elements.
|CMSMacroDesignerTab||Editor||1 day||Remembers the last active tab of the Edit macro condition dialog.|
|CMSSplitMode||Editor||session end||Remembers the state of the language version split-view mode when editing multilingual websites.|
|CMSPreviewState||Editor||1 year||Stores the user's latest page design preview preferences.|
Remembers the last active tab of the Properties section in the Pages application.
Remembers the last active tab of the View section in the Preview mode of the Pages application.
Remembers the last active tab of the Validation section in the Preview mode of the Pages application.
|CMSEdABSelectorState<ABtestname>||Editor||2 months||Stores the state of the selectors on the A/B test overview page.|
|CMSEdNoTestMVT<templateid>||Editor||1 month||Stores the currently selected MVT combination for editors in the administration interface.|
|CMSEd<GUID>Current||Editor||1 day||Stores the current step of Wizard layout web parts in the administration interface.|
Stores the selected web part category on the web part toolbar.
|CMSWebPartToolbarCategoryUI||Editor||1 month||Stores the selected web part category in the web part toolbar when editing UI templates.|
Remembers if the user minimized the web part toolbar on the Design tab.
Stores the selected device profile when editing pages.
|CMSCurrentDeviceProfileRotate||Editor||session end||Remembers whether the device preview uses the landscape or portrait view.|
|CMSUniGraph||Editor||1 year||Stores the user's Snap to grid preference in the advanced workflow and marketing automation designer.|
|CMSSessionToken||Editor||1 year||Stores the token used by the web service that provides the advanced workflow and marketing automation designer.|
Indicates if the visitor is new or returning. Used for tracking the visitors statistic in Web analytics.
|Source||Visitor||50 years||Stores the channel from which the visitor arrived as part of a campaign (e.g., email, Facebook, Twitter, etc.). Based on the utm_source query string parameter.|
Stores the name of the campaign assigned to the visitor.
|Content||Visitor||50 years||Stores the specific content item through which the visitor arrived as part of a campaign. Based on the utm_content query string parameter.|
Stores the URL referrer from which the user arrives on the website.
Stores the GUID of the contact related to the current site visitor. Used to track activities on the website.
Used to track conversions for the test and maintain consistent page content for the visitor. Stores the name of the page variant assigned to the visitor, the list of performed conversions and information whether visitor is included in A/B testing specified by an A/B test.
Stores the combination of variants assigned to the visitor by an MVT test. Used to track conversions for the test and maintain consistent page content for the visitor.
Stores a GUID reference to the user's. Allows the system to recover the shopping cart for unregistered customers, even after it is cleared from the cache (for example after an application restart).
Body element class to provide accessibility standards.
|CMSUserPage||Visitor||20 minutes||Stores the IDs (DocumentID, NodeID) of the last visited page. Used for logging landing and exit page web analytics and activities.|
Stores the login state for the Chat application (indicates if the user is in the online state).
Indicates if the user is logged in to the support chat.
|<Window name>_<Group ID>_roomID|
|4 days||Stores bindings between groups of chat web parts and chat rooms (for a specific window or tab).|
|1 hour||Remembers if the Automatically initiated chat web part was shown to the user (prevents multiple chat initiation messages).|
|Kick lasting time (seconds) setting||Indicates that the user was kicked from the specified chat room (and is not allowed to return).|
|StrandsSBS_*||Visitor||20 minutes||Used by the Strands Recommender solely for its own purposes. The cookies are managed on the Strands side.|
|CMSStrandsTrackEvent_*||Visitor||20 minutes||Stores persistent HTTP context after a page is reloaded. Used for tracking of shopping cart events.|
|__openid_selector_*||Visitor||1 year||Stores OpenId user identification for authentication purposes.|
|CMSLandingPageLoaded||Visitor||20 minutes||Indicates that the landing page has already been visited and the Landing page activity is not logged again for the current visitor. Expires after 20 minutes and the expiration period of the key is renewed every time the website is accessed again.|
Third party cookies
|Third party||Cookie level||Notes|
All (by default)
The YouTube video web part and widget use corresponding YouTube cookies.
If your site has its default cookie level configured to a lower value than All (1000), YouTube videos will not be displayed for visitors until they increase their allowed cookie level. To enable YouTube videos for lower cookie levels, set a corresponding cookie level value using the CMSSocialMediaCookieLevel web.config key:
Example - Setting the Essential level for YouTube cookies
|-||CKEditor cookies may be stored for users working with the WYSIWYG editor.|