Support Article

403 forbidden error thrown while drilling the report

SA-25738

Summary



While user is drilling down the summary view report into another summary view report, last summary view is throwing error "403 forbidden error" instead of showing the report.


Error Messages



403 forbidden error


Steps to Reproduce

  1. Create a Summary View report1.
  2. Create a Summary View report2.
  3. Go to Drilldown tab of summary view report1.
  4. Configure Summary view report2.
  5. Run the summary view report1.


Root Cause



A software use or operation error : We have used IE developer tools to debug the behavior and trace the network. We found response body has the response "<FONT COLOR="#CC0000"><b>. Due to the presence of characters known to be used in Cross Site Scripting attacks, access is forbidden.  This web site does not allow URLs which might include embedded HTML tags.</b></FONT>". Hence, Site minder is blocking the request(URL) to process further

Resolution



Make the following change to the operating environment: 

To resolve this issue, System Administrators can remove the special character from the list of characters that are monitored by Site Minder for Cross Site Scripting attacks
or disable the Cross Site Scripting checks by switching the 'CSSChecking' parameters from 'yes' to 'no' by editing the 'LocalConfig.conf' file.

 

Published July 18, 2016 - Updated July 26, 2016

Have a question? Get answers now.

Visit the Collaboration Center to ask questions, engage in discussions, share ideas, and help others.