000020808 - Microsoft Internet Information Services (IIS) default Web page not protected in RSA ClearTrust

Document created by RSA Customer Support Employee on Jun 16, 2016Last modified by RSA Customer Support Employee on Apr 21, 2017
Version 2Show Document
  • View in full screen mode

Article Content

Article Number000020808
Applies ToRSA ClearTrust Agent 3.0 for Microsoft IIS
Microsoft Internet Information Server (IIS) 5.0
IssueMicrosoft Internet Information Services (IIS) default Web page not protected in RSA ClearTrust
Error: "Not enough storage is available to process this command" in Web browser

Error: "500 server error" in Web browser
CauseThe mapping of "/" by Microsoft Internet Information Services (IIS) to a default page is a specific example of a server-side action that redirects the user to a new page. Generally, RSA ClearTrust Agents are designed to only protect the URL requested, not any translation of that URL by the Web server, its modules, or other filters.
ResolutionThis issue is corrected in RSA ClearTrust Agent hot fix 3.0.1.15, which changes the behavior of ClearTrust Agent 3.0 for Microsoft Internet Information Services (IIS) to ensure the default Web page is protected and served correctly when accessing the page as the default Web page of the server or directory. Contact RSA Security Customer Support to request RSA ClearTrust Agent hot fix 3.0.1.15, or request the latest fix level (which is cumulative, and contains fixes from previous fix levels).
It is also possible to avoid this behavior by protecting the "/" directory with a specific entitlement, or protecting the entire root directory with an entitlement "/*".
WorkaroundWhen Microsoft Internet Information Services (IIS) is configured with a "default document" and that document is protected by an entitlement, users accessing the "/" root directory will not be prompted for authentication
Legacy Article IDa18996

Attachments

    Outcomes