|Applies To||Sun Java Webserver 7.0|
RSA Access Manager Agent version 4.8 for sjws 7.0
Solaris 10 64 bit
|Issue||AxM: Sun Java Webserver 7.0 - Users not having to authenticate to protected URLs|
User authenticates fine, does not have the entitlement and should be denied. Logs show page protected. Redirecting to ct_deny ( Full URI: /cleartrust/ct_access_denied_en.html) is ignored and protected page is served.
|Cause||sjws 7.0 orders entries in the obj.conf alphabetically. When doing this it placed the proxy entries above the NameTrans fn="ct-*" functions. With this set it was only protecting locally hosted URLs, not the proxied ones. Urls being accessed were proxied ones|
|Resolution||Move proxy entries under the NameTrans fn="ct-*" functions|
|Legacy Article ID||a42823|