Access Denied (or allowed) on SGOS 5.5.x or 6.1.1.x when ICAP enabled and Auth layer not first layer
Affected products and versions
SGOS 6.1.1.x (126.96.36.199 and 188.8.131.52)
When browsing out to sites after upgrading from SGOS 5.4.x to SGOS 5.5 or 6.1.1.x, users are denied access to web resources.
The problem has been reported to engineering. Please see the workaround below.
To work around the issue, please reorder policy so authentication happens first. If you use the Visual Policy Manager (VPM), please make sure Web Authentication Layer is the first layer (first tab to the left). If you are using CPL, make sure the authentication happens first. This is necessary so the user is identified before any other policy is executed.
Rate this Page
Please take a moment to complete this form to help us better serve you.