Cisco Cisco Web Security Appliance S360 Troubleshooting Guide
Why is access blocked by the notification error
message: IDS_ACCESS_FORBIDDEN?
message: IDS_ACCESS_FORBIDDEN?
Document ID: 118185
Contributed by Siddharth Rajpathak, Cisco TAC Engineer.
Aug 12, 2014
Aug 12, 2014
Contents
Introduction
What does the error "IDS_ACCESS_FORBIDDEN" mean?
What does the error "IDS_ACCESS_FORBIDDEN" mean?
Introduction
This document describes why access is blocked with the error message "IDS_ACCESS_FORBIDDEN,
BLOCK−WEBCAT".
BLOCK−WEBCAT".
What does the error "IDS_ACCESS_FORBIDDEN" mean?
Environment: Cisco Web Security Appliance (WSA), AsyncOS version 6.0 and later, data filters enabled
Symptoms: Unable to upload files/document on a web site and users receive this error message. The error
message is seen while logging into certain web sites.
message is seen while logging into certain web sites.
AsyncOS Versions 6.0 and later provide a new feature called Data Security (IDS) filters. The IDS feature
helps in blocking file uploads on certain web sites based on their WBRS score, URL category, or file size.
helps in blocking file uploads on certain web sites based on their WBRS score, URL category, or file size.
The notification message IDS_ACCESS_FORBIDDEN indicates that a file upload or access was blocked,
based on the Data Security policy configuration.
based on the Data Security policy configuration.
Further, the BLOCK−WEBCAT code indicates that a particular URL category was configured to Block
under:
under:
GUI −> Security services −> Cisco Data Security
You can allow access by using either of these methods:
Monitor access in IDS policies
Under GUI −> Web Security Manager −> Cisco Data Security
1.
Configure the particular URL category to Monitor
2.
Submit and Commit the changes
3.
Allow access using a custom URL category