000024741 - RSA ClearTrust unable to set URL retention or the CTSESSION cookie

Document created by RSA Customer Support Employee on Jun 16, 2016Last modified by RSA Customer Support Employee on Apr 21, 2017
Version 2Show Document
  • View in full screen mode

Article Content

Article Number000024741
Applies ToRSA ClearTrust Agent 4.5 for Microsoft IIS
Microsoft Internet Information Server (IIS) 5.0
Microsoft Internet Information Server (IIS) 6.0
IssueRSA ClearTrust unable to set URL retention or the CTSESSION cookie
When accessing a ClearTrust-protected resource, the user is authenticated, but they are directed to the ClearTrust home page instead of the target URL after authentication. The URL redirection cookie and the ClearTrust session cookie are not issued. The auth server log file shows that the user is authenticated.
Cause
This can occur if the IIS Web server domain name contains an invalid character. The underscore character is not allowed in domain names. The following RFC outlines the conventions for domain names:

http://www.rfc-editor.org/rfc/std/std13.txt

Microsoft specifically blocks these invalid names:

http://support.microsoft.com/default.aspx?scid=kb;en-us;316112
Resolution
To correct this issue, change the name of the Web server so it does not contain any invalid characters.
Legacy Article IDa22332

Attachments

    Outcomes