000023162 - When KWP credentials timeout  it tries to authenticate to the KWP server using HTTP  not HTTPS.

Document created by RSA Customer Support Employee on Jun 14, 2016Last modified by RSA Customer Support Employee on Apr 22, 2017
Version 2Show Document
  • View in full screen mode

Article Content

Article Number000023162
Applies ToKeon Web PassPort 1.1.1
Microsoft Windows 2000 Advanced Server
Microsoft Internet Information Server (IIS)
IssueWhen KWP credentials timeout, it tries to authenticate to the KWP server using HTTP, not HTTPS.
CauseIf you try to access your certificate after your Web Passport credential times, a web browser will open to the Web Passport authentication page using port 80.  The page will fail to open if you have your IIS directory security options set to require SSL.  There is an option in the Advanced tab of the Web Passport ISM snap-in that will automatically redirect HTTP connections to HTTPS.  This feature only works for the initial authentication.  It does not work with the automatic browser pop-up for reauthentication of an expired credential. KWP does not check if the IIS webserver is setup for require SSL.
ResolutionRSA Engineering has created a Hot Fix that will do a check to see the IIS Server is setup for SSL only.
Contact RSA customer Support and ask for Hot Fix tst00024669.
Legacy Article IDa9060