Support Article
403 forbidden error thrown while drilling the report
SA-25738
Summary
While user is drilling down the summary view report into another summary view report, last summary view is throwing error "403 forbidden error" instead of showing the report.
Error Messages
403 forbidden error
Steps to Reproduce
- Create a Summary View report1.
- Create a Summary View report2.
- Go to Drilldown tab of summary view report1.
- Configure Summary view report2.
- Run the summary view report1.
Root Cause
A software use or operation error : We have used IE developer tools to debug the behavior and trace the network. We found response body has the response "<FONT COLOR="#CC0000"><b>. Due to the presence of characters known to be used in Cross Site Scripting attacks, access is forbidden. This web site does not allow URLs which might include embedded HTML tags.</b></FONT>". Hence, Site minder is blocking the request(URL) to process further
Resolution
Make the following change to the operating environment:
To resolve this issue, System Administrators can remove the special character from the list of characters that are monitored by Site Minder for Cross Site Scripting attacks
or disable the Cross Site Scripting checks by switching the 'CSSChecking' parameters from 'yes' to 'no' by editing the 'LocalConfig.conf' file.
Published July 26, 2016 - Updated October 8, 2020
Have a question? Get answers now.
Visit the Collaboration Center to ask questions, engage in discussions, share ideas, and help others.