You are viewing limited content. For full access, please sign in.

Question

Question

403 Error when configuring SSO options on LFDS

Directory Server Laserfiche Security
Updated March 28, 2017
asked on March 17, 2016

My client is getting a 403 error when trying to access the configuration page for LFDS single sign-on. If they use localhost/LFDSSTS/configuration (when remoted onto the server as a domain admin) then the page comes up fine. But if they use servername(omitted for security)/LFDSSTS/configuration (whether on the server or not) it brings up a windows username and password box. The user enters the domain admin info and then gets prompted to a generic 403 error. Has anyone seen this before, or is this a security feature of the LFDS?

0 0

Replies

replied on March 17, 2016

The current expected behavior is that you should get the 403 error only when accessing the machine remotely, so you should be able to use https://servername/LFDSSTS/configuration from the local machine. I cannot reproduce with a couple machines, but it may be a browser-specific setting. What browser and version are you using?

We decided to go with this "local administration only" model to prevent some security and login issues, but we may be able to revisit the decision.

Is this behavior problematic for you, or were you just looking for confirmation of the expected behavior?

0 0
replied on March 21, 2016

They are using IE version 11.0.28, I have not tried it on another browser yet. And it's only slightly problematic, since they can just use localhost instead. But they would like to see if they could get the servername/LFDSSTS page.

0 0
replied on March 28, 2017

"We decided to go with this "local administration only" model to prevent some security and login issues, but we may be able to revisit the decision."

 

Would this be the same for LFDS?  

0 0
replied on March 28, 2017

No, the main LFDS site can be administered from other machines as long as your Windows user has access.

1 0
You are not allowed to follow up in this post.

Sign in to reply to this post.

Details
Related Posts
Loading ...