HTTP error 403

If you receive a HTTP error 403, you can disable the Cross-Site Request Forgery (CSRF) protection feature to prevent the error.


When you refresh the IBM® Security Guardium® GUI from the system main page, you receive in the following error:

HTTP Status 403-
type Status report
description Access to the specified resource () has been forbidden


The cause is a feature in Guardium designed to prevent Cross-Site Request Forgery (CSRF). CSRF protection is enabled by default.


All Guardium configurations (collector, aggregator, central manager) are affected.

Resolving the problem

You can disable this feature by using the following CLI command: store gui csrf_status off

Note: If you turn off CSRF protection, the security level of the Guardium system is reduced.

The following command enables protection against Cross-Site Request Forgery. It is enabled by default: store gui csrf_status on

You can check the status by running this CLI command: show gui csrf_status