BADQueryChars ACO parameter

book

Article ID: 16626

calendar_today

Updated On:

Products

CA Single Sign On Secure Proxy Server (SiteMinder) AXIOMATICS POLICY SERVER CA Single Sign On SOA Security Manager (SiteMinder) CA Single Sign-On

Issue/Introduction

BADQueryChars ACO parameter



I'm running a Web Agent and I'm trying to configure the ACO Parameter

BADQueryChars. Does BADQueryChars only support a single character

value separated by comas ?

 

Environment

Any SSO version

Resolution

In the BADQueryChars, we can put values in 4 ways :

 

Single character encoded like A : %65

A character range encoded like : %61-%70

String like : SELECT

String in Hexadecimal like : 53454c4543540d0a

 

So the BADQueryChars would look like this :

 

BADQueryChars="%65,%61-%70,SELECT,53454c4543540d0a"

 

 

Additional Information

https://docops.ca.com/ca-single-sign-on/12-52-sp1/en/configuring/web-agent-configuration/user-protection-and-tracking/help-prevent-attacks#HelpPreventAttacks-SpecifyBadQueryCharacters