search cancel

Unable to use the password reset function in Symantec Messaging Gateway after upgrading to 10.6.6.


Article ID: 172764


Updated On:


Messaging Gateway


Trying to use the password reset feature in Messaging Gateway after upgrading to 10.6.6 may result in a Cross Site Request Forgery error page that does not allow you to reset the password.

The Control Center responds with:
Possible Cross Site Request Forgery

Cross Site Request Forgery Exception

You are being directed to this page because of a possible, un-authorized, attempt to access a page using Request Forgery.

If you are a valid user, please go back and re-try the operation.

Please try to avoid using multiple browsers/browser tabs when accessing the application.
The Control Center log file will have similar to the following:
Oct 22 2018 12:16:47 [http-bio-41443-exec-5] [DefaultAction] ERROR - Anti-CSRF :
Invalid token for saving details. Possible Cross-Site Request Forgery request.
Skipping processing....URL :
Oct 22 2018 12:16:47 [http-bio-41443-exec-5] [DefaultAction] ERROR - Anti-CSRF :
Method trying to be invoked : public org.apache.struts.action.ActionForward,
throws java.lang.Exception



Symantec is currently investigating this issue. Please subscribe to this KB for updates.