Cf_clearance cookie purpose

ruben.recio · November 22, 2024, 9:40am

What is the name of the domain?

exoclick.thinkific.com

What is the issue you’re encountering

Cannot determine cookie purpose

What steps have you taken to resolve the issue?

Checked documentation, compared site info

What is the current SSL/TLS setting?

Off

What are the steps to reproduce the issue?

I have a website created through a 3rd-party platform. There is a resource on the website (not sure which one) that generates the cookie cf_clearance. According to Cloudflare’s docs, this cookie is strictly necessary because it stores the proof of Cloudflare bot challenge passed. However, I have added a Cookie Banner from OneTrust on the site and it says that the cf_clearance cookie is actually a functional one, meaning that it should not generate unless the user has consented. See here: cf_clearance cookie name search results | Cookiepedia

All the other resources I have checked provided mixed results. termly.io says it is essential, whereas cookieserve.com lists it as “Other”. What’s Cloudflare’s statement on this? How can I confirm whether this cookie is strictly necessary or not?

sjr · November 22, 2024, 10:57am

cf_clearance is the cookie set when passing a Cloudflare challenge…

It is essential, without it users won’t be able to get past the challenge page.

system · November 24, 2024, 10:57am

This topic was automatically closed 2 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
Cookies cf_clearance Security	2	2376	July 8, 2022
Cf_ cookies Website, Application, Performance	2	2009	November 6, 2021
How are cloudflare cookies used? General dash-troubleshooting	6	2273	August 23, 2019
Cfmrk_eucookiebanner and cfmrk_userLangRedirect cookies General	14	2705	July 24, 2019
__cfduid Cookie Security	1	2505	December 18, 2019