|Applies To||RSA Product Set: RSA Identity Governance & Lifecycle |
RSA Version/Condition: 6.9.x, 7.x
|Issue||Previously working collectors fail after upgrading to 6.9 or higher of RSA Identity Governance & Lifecycle. The Oracle alert log (/u01/app/oracle/diag/rdbms/avdb/AVDB/trace/alert_AVDB.log) reports the following error:|
|Cause||HTML or XML text used in a collector query is being deleted, truncated, or otherwise changed.|
Due to a new security enhancement in 6.9, a query from a version before 6.9.1 that contains markup or scripting language may have that language stripped during the migration or when a collector is subsequently edited or modified. The new security feature limits the allowable markup and scripting that can be used in collector queries.
|Resolution||Modify the collector query to conform with the Security definitions for XSS/Scripting defined under Admin > System > Security. Although these settings are configurable, due to security enhancements, they are more restrictive than was previously allowed.|
See the RSA Identity Governance & Lifecycle Administrator's Guide for your version for more information on these settings.