This article applies to customers using Integrated Windows Authentication (IWA) as the Identity Provider (IdP) for the IDR portal.
Users may experience intermittent authentication issues when using IWA as the IdP for the IDR web portal. After submitting credentials, the browser may display a "Site not reachable" error. Refreshing the page typically resolves the issue and allows successful authentication and access to the IDR web portal.
During RSA IWA authentication, the IIS server hosting the RSA IWA application communicates with the browser using the HTTP/2 protocol. However, IIS does not support Windows authentication methods such as Kerberos or NTLM over HTTP/2. For more information, see HTTP/2 on IIS.
To resolve this issue, disable HTTP/2 communication on the Microsoft Windows IIS server hosting the RSA IWA application. To disable HTTP/2, add the following registry parameters on the Windows Server hosting the RSA IWA Connector:
-
EnableHttp2Cleartext -
EnableHttp2Tls
Disable HTTP/2 on the RSA IWA Connector Server
Procedure
- Log in to the Windows Server running the RSA IWA Connector.
-
Press
, typeWindows + Rregedit, and press Enter to open the Registry Editor. -
In the Registry Editor, navigate to
Computer > HKEY_LOCAL_MACHINE > SYSTEM > CurrentControlSet > Services > HTTP > Parameters
(Registry path:
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\HTTP\Parameters) -
Right-click Parameters, select New > DWORD (32-bit) Value.
-
Add the following two values:
-
EnableHttp2Cleartext -
EnableHttp2Tls
-
-
Restart the server to apply the changes.
Related Articles
IWA Keyset does not exist 27Number of Views Intermittent failures authenticating to RSA SecurID Authentication Manager protected resources using the RSA SecurID Acces… 71Number of Views Cloud Access Service - Integrated Windows Authentication 6Number of Views Intermittent authentication issue with RSA Authentication Agent 7.4.3 for Windows 55Number of Views Integrated Windows Authentication 28Number of Views
Trending Articles
RSA Authentication Manager 8.9 Setup and Configuration Guide RSA Authentication Manager 8.9 Release Notes (January 2026) RSA MFA Agent 2.3.6 for Microsoft Windows Installation and Administration Guide How to 'Trust' the RSA Authentication Manager Security Console Self-Signed Root CA certificate and prevent Cert warnings. RSA Authentication Manager Upgrade Process