SecurID® Governance & Lifecycle Knowledge Base
Find answers to your questions and identify resolutions for known issues with knowledge base articles written by SecurID Governance & Lifecycle experts.
Article Number
000031749
Applies To
RSA Product Set: RSA Identity Governance & Lifecycle
RSA Version/Condition: 6.9.x, 7.x
RSA Version/Condition: 6.9.x, 7.x
Issue
Previously working collectors fail after upgrading to 6.9 or higher of RSA Identity Governance & Lifecycle. The Oracle alert log (/u01/app/oracle/diag/rdbms/avdb/AVDB/trace/alert_AVDB.log) reports the following error:
ORA-31011: XML parsing failed
ORA-19202: Error occurred in XML processing
LPX-00210: expected '<' instead of 'M'
Error at line 1
ORA-06512: at "SYS.XMLTYPE", line 0
ORA-06512: at line 1 Caused By Stack com.aveksa.sdk.collector.CollectionException
Cause
HTML or XML text used in a collector query is being deleted, truncated, or otherwise changed.
Due to a new security enhancement in 6.9, a query from a version before 6.9.1 that contains markup or scripting language may have that language stripped during the migration or when a collector is subsequently edited or modified. The new security feature limits the allowable markup and scripting that can be used in collector queries.
Due to a new security enhancement in 6.9, a query from a version before 6.9.1 that contains markup or scripting language may have that language stripped during the migration or when a collector is subsequently edited or modified. The new security feature limits the allowable markup and scripting that can be used in collector queries.
Resolution
Modify the collector query to conform with the Security definitions for XSS/Scripting defined under Admin > System > Security. Although these settings are configurable, due to security enhancements, they are more restrictive than was previously allowed.
Image description
See the RSA Identity Governance & Lifecycle Administrator's Guide for your version for more information on these settings.
Image descriptionSee the RSA Identity Governance & Lifecycle Administrator's Guide for your version for more information on these settings.
In this article
