Technical Requirements for Institutional Access to CMOS Online

The CMOS Online website requires JavaScript and Cookies in order for institutional users to view protected content. The site sets session and persistent cookies. The persistent cookies will expire after 30 minutes of inactivity, but they automatically renew when the user attempts to access the site again.

Domain Names

If institutions access the site via proxy or use any other security software on their networks, settings must allow both Javascript and Cookies and allow redirects between the following two domains:

1. Main Website Content Access

https://www.chicagomanualofstyle.org

2. Authentication Access Service (not accessible directly)

https://login.chicagomanualofstyle.org

Please link to www.chicagomanualofstyle.org to access content. The 18th edition is the default edition when logging in. The 17th edition is easily accessible from the page header.

Security

Please note that the authentication service now uses SSL; the login.chicagomanualofstyle.org runs on https.

Sample EZProxy Configuration

Option DomainCookieOnly

T Chicago Manual of Style Online

U www.chicagomanualofstyle.org

HJ www.chicagomanualofstyle.org

HJ chicagomanualofstyle.org

HJ login.chicagomanualofstyle.org

DJ chicagomanualofstyle.org

DJ login.chicagomanualofstyle.org

Find http://doi.org

Replace ^Adoi.org

Option Cookie

Sample Third-Party Security Software: Web Filtering

Websense, Untangle, Palo Alto, Fortiguard, etc.

Please configure all third-party security software to allow traffic to both domains listed above, as well as allow JavaScript, session, and persistent cookies to be passed to the client browser.