The default for the session.cookie_domain is nothing "". It is possible that the session cookie was created using the full domain of the starting page. If so, this could lockout access from a subdomain. The PHP manual for cookies recommends -
Quote:
|
To make the cookie available on all subdomains of example.com then you'd set it to '.example.com'. The . is not required but makes it compatible with more browsers. Setting it to www.example.com will make the cookie only available in the www subdomain.
|
Perhaps set session.cookie_domain to '.yourdomain.com'