000020261 - Users receive a VBScript error from ct_securid.asp when authenticating in New PIN or Next Token mode.

Document created by RSA Customer Support Employee on Jun 14, 2016Last modified by RSA Customer Support Employee on Apr 22, 2017
Version 2Show Document
  • View in full screen mode

Article Content

Article Number000020261
Applies ToRSA ClearTrust Agent 3.0 for Microsoft IIS
RSA SecurID Standard Token
Microsoft Internet Information Server (IIS) 5.0
Token is in New Pin mode
RSA SecurID user is in Next Tokencode Mode
IssueUsers receive a 500 server error from ClearTrust logon form ct_securid.asp when authenticating in New PIN or Next Token mode
Error: "Microsoft VBScript runtime (0x800A000D)
              Type mismatch: 'Session'
              /cleartrust/ct_securid.asp, line 29"
CauseFor the ClearTrust ASP login forms to negotiate SecurID New PIN and Next Token mode, the IIS server must be configured to maintain the HTTP session state
ResolutionThe follow step describe how to configure IIS 5.0 to maintain the HTTP session state:

1. Open Internet Service Manager

2. Right click on the Web Site properties

3. Select the "Home Directory" tab

4. Click on "Configuration" button

5. Select the "App Options" tab

6. Check the "Enable Session State" check box

7. Click "OK" to save the change

8. Restart the World Wide Web Publishing service

RSA Security Technical Support has seen a few rare cases where IIS is configured to maintain HTTP session state, yet the above error still occurs. In such cases, a resolution is to edit the ct_securid.asp file as follows:

NOTE: Please be sure to make a backup copy before editing any configuration file

1. Delete Line 29:
        If Session("display") = "false" THEN

2. Replace it with the following two lines:
        Session = Request.QueryString("Session")
        If Session = "false" THEN

3. Delete Line 460:
        Session("display")="false"

4. Replace it with the following line:
        Session="false"

Legacy Article IDa15541

Attachments

    Outcomes