HTTP error 403
If you receive a HTTP error 403, you can disable
the Cross-Site Request Forgery (CSRF) protection feature to prevent
the error.
Symptoms
When you refresh the IBM® Guardium® GUI from the system main page, you receive in the following error:
HTTP Status 403-
type Status report
message
description Access to the specified resource () has been forbidden
Causes
The cause is a feature in Guardium designed to prevent Cross-Site Request Forgery (CSRF). CSRF protection is enabled by default.
Environment
All Guardium configurations (collector, aggregator, central manager) are affected.
Resolving the problem
You can disable this feature by using the following CLI command: store gui csrf_status off
Note: If
you turn off CSRF protection, the security level of the Guardium system
is reduced.
The following command enables protection against Cross-Site Request Forgery. It is enabled by default: store gui csrf_status on
You can check the status by running this CLI command: show gui csrf_status