000014295 - How to unprotect a dynamic query-string based URL

Document created by RSA Customer Support Employee on Jun 16, 2016Last modified by RSA Customer Support Employee on Apr 21, 2017
Version 2Show Document
  • View in full screen mode

Article Content

Article Number000014295
Applies ToClearTrust Agent 4.6
RSA ClearTrust 4.7 Agent
RSA Access Manager 4.8 Agent
IssueHow to unprotect a dynamic query-string based URL
Resolution

In order to exclude the dynamic query string based URL from access control checks, a rule can be created in rules.xml file located in <agent home>/conf directory. This rule will allow access to dynamic query-string based URL by using wildcards to indicate the variable parts of the query-string. Following example shows a rule that allows access to dynamic query-string based url (abc.*).

<Rule>
        <argument type="QueryString" expression="abc.*"/>
        <action type="HTTP" argument="200"/>
</Rule>

Legacy Article IDa43939

Attachments

    Outcomes