The current implementation of IP Cookie Binding is VERY disruptive to end users. There are a number of activities normal users take that will trigger the IP Cookie Binding workflow. When this happens the user experience is intrusive and disruptive. It forces a user to log out and in some cases shows a "classic" error message that "scares" the user. In other cases we have found users end up in a loop of logins.

We have opened a Ticket and the result was the current experience is by design. Below are some specific things we would like to see:

1. The user doesn't need to sign back in. If they have a valid session, simply clear the old cookie and create a new one.
2. If the user needs to sign back in they do not receive a classic error message.
3. The warning the user gets is helpful to the end user to understand why they might have received the message.