000021653 - How to enable Integrated Windows Authentication (IWA) in RSA ClearTrust

Document created by RSA Customer Support Employee on Jun 16, 2016Last modified by RSA Customer Support Employee on Apr 21, 2017
Version 2Show Document
  • View in full screen mode

Article Content

Article Number000021653
Applies ToRSA ClearTrust Agent 4.5 for Microsoft IIS
Microsoft Windows 2000 Advanced Server SP4
Microsoft Integrated Windows Authentication (IWA)
IssueHow to enable Integrated Windows Authentication (IWA) in RSA ClearTrust
After authenticating through Integrated Windows Authentication (IWA), user receives ct_access_denied.asp page. After refreshing the page, user can access the requested protected resource.
CauseThe Integrated Windows Authentication (IWA) URL specified in the cleartrust.agent.login_form_location_iwa parameter in webagent.conf is being treated as a protected resource.  In the process of IWA authentication, the user is being redirected to the URL specified in this parameter prior to authenticating; as a protected resource, the user is unable to access it.
ResolutionAdd the URL specified in the cleartrust.agent.login_form_location_iwa parameter to the list of excluded URL's in the parameter cleartrust.agent.url_exclusion_list.
Legacy Article IDa24110

Attachments

    Outcomes