RSA Security 3.75 User Manual
6. Known Issues
· Clear Trust IIS plug in priority. The ClearTrust IIS filters should always load first, before any
other filters. In order to make sure this happens, include the following line in the ClearTrust
plugins default.conf file located on the IIS machine:
plugins default.conf file located on the IIS machine:
securecontrol.plugin.iis.priority=HIGH
This line can be added anywhere within the default.conf file as long as nothing else is on the same
line
line
Some behavior a user might see if the ClearTrust filter is not loaded first is a failure of the POST
filters to load and/or Dr. Watson errors.
filters to load and/or Dr. Watson errors.
· Forms-based URI retention. Forms-based URI retention does not work correctly when
protecting a SilverStream resource due to the interaction between the way the Clear Trust IIS plug
in and the SilverStream WSI module work. The following is an example of the behavior of
requesting a SilverStream resource protected by Clear Trust with forms-based URI retention
turned on.
in and the SilverStream WSI module work. The following is an example of the behavior of
requesting a SilverStream resource protected by Clear Trust with forms-based URI retention
turned on.
1. Requested
2. User will get prompted for authentication by the ClearTrust form (ct_logon.asp).
3. After a successful authentication, user will get forwarded to the following URI that does
not exist:
The workaround is to either use the pop-up window form factor or turn off URI retention when
using form-based authentication.
Page: 11