X-Forwarded-For setting for Advanced Authentication

book

Article ID: 207913

calendar_today

Updated On:

Products

CA Advanced Authentication - Strong Authentication (AuthMinder / WebFort)

Issue/Introduction

We are seeing the IP address of the Load Balancer in the Risk Evaluation process and wondering how can we capture the End user IP address?

Environment

Release : 8.2

Component : AuthMinder(Arcot WebFort)

RiskMinder( Arcot Riskfort)

Resolution

In later versions of Advanced Authentication product, We by default disabled the X-Forwarded-For header, in ARCOT_HOME/conf/afm/arcotafm.proprties file please check this-

# ==========================================================================
# X-FORWARDED-FOR functionality parameters
# ==========================================================================
XFFEnabled=false

To capture the end user IP address make the value as 'true' and once that is done, it will take the application server restart for making this change to come into effect.

Additional Information

https://en.wikipedia.org/wiki/X-Forwarded-For