000019870 - How to enable HTTPS redirection for RSA ACE/Agent for Web

Document created by RSA Customer Support Employee on Jun 16, 2016Last modified by RSA Customer Support Employee on Apr 21, 2017
Version 2Show Document
  • View in full screen mode

Article Content

Article Number000019870
Applies ToRSA ACE/Agent 5.0
RSA ACE/Agent for Web
Microsoft Internet Information Server (IIS) 4.0
Microsoft Windows NT 4.0
IssueHow to enable HTTPS redirection for RSA ACE/Agent for Web
Error: "403.4 Forbidden: SSL required" when accessing RSA ACE/Agent for Web protected web page with "Redirect HTTP Connections to Secure Server" option checked in Properties area
CauseIIS is properly enabled to use SSL (e.g. server certificate is installed). However, IIS is configured to always use SSL. Hence, connections directed initially to non-SSL URLs (e.g. http://page.domain.com) will be rejected with a HTTP 403 error message.
ResolutionTo correct this issue, set "Require Secure Channel when accessing this resource" to "off" in the IIS Directory Security settings. Then users can point to a RSA ACE/Agent for Web protected resource using http:// URLs and will be redirected to an https:// URL by RSA ACE/Agent for Web.

NOTE: IIS 5.0 on Windows 2000 does not require this additional configuration
Legacy Article IDa12955

Attachments

    Outcomes