000022702 - RSA ClearTrust Agent 3.5.2 for BEA WebLogic publishes server-side environment variables (e.g. CT_AUTH_TYPE CT_REMOTE_USER) to client-side web browser

Document created by RSA Customer Support Employee on Jun 16, 2016Last modified by RSA Customer Support Employee on Apr 21, 2017
Version 2Show Document
  • View in full screen mode

Article Content

Article Number000022702
Applies ToRSA ClearTrust Agent 3.5.2 for BEA WebLogic
IssueRSA ClearTrust Agent 3.5.2 for BEA WebLogic publishes server-side environment variables (e.g. CT_AUTH_TYPE,CT_REMOTE_USER) to client-side web browser
ResolutionIf you're seeing server-side environment variables published to the web browser's HTTP header such as shown in the following example:

CT_AUTH_TYPE: 1
REMOTE_USER: 999888
CT_WEB_SVR_ID: DevServer
CT_REMOTE_USER: 999888687687
company: CP119fa03fa392a

This issue has been resolved in a hot fix for RSA ClearTrust Agent 3.5.2 for BEA WebLogic. Contact RSA Security Customer Support to obtain hot fix 3.5.2.07, or request the latest fix level (which is cumulative, and contains fixes from previous fix levels).
Legacy Article IDa29900

Attachments

    Outcomes