This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

After upgraded QIM to 6.1.3, attestation case approval link in email no longer works.

xd over 8 years ago

Customer has a custom process to create the attestation case for new Person and send email to the approver. The email has three hyperlinks to view/approve/deny attestation case:

https://idm.domain.com/identitymanager/page.axd?ContextID=VI_Attestation&aeweb_uid_attestationhelper=3E59E198-A1AA-486C-8F87-723F13B6E395

https://idm.domain.com/identitymanager/page.axd?ContextID=VI_Attestation&aeweb_uid_attestationhelper=3E59E198-A1AA-486C-8F87-723F13B6E395&aeweb_decision=approve

https://idm.domain.com/identitymanager/page.axd?ContextID=VI_Attestation&aeweb_uid_attestationhelper=3E59E198-A1AA-486C-8F87-723F13B6E395&aeweb_decision=deny

After we upgraded QIM to 6.1.3, no links work. When we click the link, it always redirects to the default landing page (SSO enabled).

What could be the cause of issue? Any suggestions are appreciated!

Thanks!

0 xd over 8 years ago

The issue was caused by the behavior "Forcing session end on 'your_session_id' due to an invalid anti-session-fixation cookie value". Disable the fixation (add new key) in web.conf as below to resolve the issue.
<appSettings>
.......
<add key="NoAntifix" value="true" />
</appSettings>
Please consult with the customer if adding the key would violate their policy.
Cancel
Up 0 Down

Cancel