000021306 - How to set the AUTH_USER and REMOTE_USER variables using ClearTrust authentication and RSA ClearTrust Agent 4.5 for Microsoft IIS

Document created by RSA Customer Support Employee on Jun 16, 2016Last modified by RSA Customer Support Employee on Apr 21, 2017
Version 2Show Document
  • View in full screen mode

Article Content

Article Number000021306
Applies ToRSA ClearTrust Agent 4.5 for Microsoft IIS
Microsoft Windows 2000 SP4
IssueHow to set the AUTH_USER and REMOTE_USER variables using ClearTrust authentication and RSA ClearTrust Agent 4.5 for Microsoft IIS
Windows logon prompt appears but will not accept any username
ResolutionThe ClearTrust Agent does not set these variables since that could interfere with other authentication methods for IIS. It is possible to configure the directory security settings and ClearTrust settings so that these variables will be set. Follow these steps to do so:

1. Open IIS Manager

2. Browse to the site or resource for which you want to set the AUTH_USER and REMOTE_USER variables. This can be done globally by selecting "Web Sites".

3. Open the Properties and select the Directory Security tab

4. Edit the Authentication and Access control settings and select "Enable anonymous access" and "Basic authentication"

5. Edit the webagent.conf file and add or modify the following settings:

    cleartrust.agent.iis.preproc_auth_enabled=True
    cleartrust.agent.iis.suppress_basic_auth_for_unprotected=True

NOTE: You will need to apply hot fix 11 or later to the Agent for these settings to work
Legacy Article IDa22351

Attachments

    Outcomes