I have an ASP.NET MVC application which is hosted in a web server. It is configured to use Web Garden using StateServer.
ASP.NET State service is hosted in the same server where ASP.NET MVC application is.
In application's web.config file I have set below configuration:
<sessionState mode="StateServer" stateConnectionString="tcpip=127.0.0.1:42424" timeout="360" />
I have not set cookieless="false" in the session state. Also I have not set any Machine key.
Do I need to set cookieless="false" and machine key in a single hosting server?
What is the purpose of setting cookieless="false" and machine key? What is the difference between using them or not?