000019952 - When an Agent receives a URL request  is there a way to stop the Agent from checking if it is a protected resource?

Document created by RSA Customer Support Employee on Jun 14, 2016Last modified by RSA Customer Support Employee on Apr 22, 2017
Version 2Show Document
  • View in full screen mode

Article Content

Article Number000019952
Applies ToRSA ClearTrust
RSA ClearTrust Agents
IssueWhen an Agent receives a URL request, is there a way to stop the Agent from checking if it is a protected resource?
CauseThe ClearTrust Agent will always refer the requested URI or Application Method to the Authentication Servers (to check which authorization entitlements apply to that resource). If authorization is required, the Agent will then use its own configuration file to determine which type of authentication method to use.

With ClearTrust version 2 and 3 Agents, it is possible to stop all protection with the following directive:

        cleartrust.agent.enabled=No

This directive can be applied globally or per virtual host.

With Agents that protect virtual hosts, this directive can be used as a method to optimize performance by placing items such as images in a virtual server and setting the Agent configuration file to leave it unprotected.

Alternatively, the Agent API can be used to intercept the URL and determine if the requested URI should be checked against the Entitlements Database.
Legacy Article IDa13371

Attachments

    Outcomes