|Applies To||Microsoft Internet Explorer 6.0|
cleartrust.agent.cookie_expiration set to value other than 0
Non-forms-based authentication works, and auth logs show user is authenticated
|Issue||RSA ClearTrust login page looping|
Login page looping back after successful authentication
Web browser not prompting to save a cookie, and no cookie is being set
Single Sign-On (SSO) not working
|Cause||Client web browser contains incorrect system time|
Internet Explorer (any version) cannot accept cookies with an expiration time in the past (Netscape will accept the cookie, but will force it to be updated on the next login). Session cookies do work correctly on browsers that contain the wrong time.
|Resolution||To correct this issue, ensure the client computer's web browser has the correct system time.|
NOTE: Setting cleartrust.agent.cookie_expiration=0 will use session cookies that are not vulnerable to the problem.
|Legacy Article ID||a14562|