000018061 - RSA ACE/Agent for Web gives access to protected pages when correct passcode is used

Document created by RSA Customer Support Employee on Jun 16, 2016Last modified by RSA Customer Support Employee on Apr 21, 2017
Version 2Show Document
  • View in full screen mode

Article Content

Article Number000018061
Applies ToRSA ACE/Agent for Web
RSA ACE/Agent for Windows
IssueRSA ACE/Agent for Web gives access to protected pages when correct passcode is used
"PASSCODE Accepted" in ACE/Server log
Error: "Cookie rejected. Cookie failed MD5 test." in Windows event log
ResolutionThere are occasions where due to other software, permissions of registry keys within NT have been altered away from the advised Microsoft settings.  

These permissions are viewed and modified using the 'REGEDT32' utility

(WARNING from Microsoft: Using Registry Editor incorrectly can cause serious problems that may require you to reinstall your operating system. Microsoft cannot guarantee that problems resulting from the incorrect use of Registry Editor can be solved. Use Registry Editor at your own risk.)  

Go to the registry key "HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\w3svc"

There should be three sets of permissions:

        Administrators                Full Control
        Everyone                Special Access
        SYSTEM                Full Control

These setting should exist on the "w3svc" key and all existing subkeys

If the permissions are wrong, then they can be added back in and the option to "Replace Permission on Existing Subkeys" selected.
Legacy Article ID4.0.1646814.2503238

Attachments

    Outcomes