The fragment identifier "#" cannot be a part of the retained URI because it has special meaning. The issue is that the browser never sends it (the fragment delimiter) to the webserver. It is never seen by the webserver and therefore our agent doesn't see it either, so impossible for the RSA agent to capture it to save it. The browser holds onto the reference information (never sends it) to be interpreted by the browser after the retrieval action has been successfully completed (i.e. bookmark). Unfortunately, the browser doesn't?t retain it because of the type of redirect after authentication. The browser would use it only if going directly to the page.
In this case with IWA the redirect is done by the ct_home.asp page that is IWA protected in the ClearTrust\IWA\directory
If sURL <> "" Then
<META HTTP-EQUIV="refresh" CONTENT="0;url=<%=sURL%>">
<% Else %>
Instead of META refresh use response.redirect "<%=sURL%>"\
The Firefox and Chrome browsers now retain the #text. Internet Explorer 7 and 8 still don't retain it. IE may need additional config changes to work.
IE8 is listed as retaining the #text on this chart: