ROC WebUI Returns 403 Forbidden after 6.7.4 Cumulative Patch or 6.8 upgrade

search cancel

ROC WebUI Returns 403 Forbidden after 6.7.4 Cumulative Patch or 6.8 upgrade

book

Article ID: 238221

calendar_today

Updated On:

Products

CA Release Automation - Release Operations Center (Nolio)

Issue/Introduction

After applying the 6.7.4 Cumulative Patch or 6.8 Management Server upgrade, attempting to access the ROC it returns:
HTTP Status 403 - Forbidden
Message: Request with host header * are not allowed by the server security settings
Description: The server understood the request but refuses to authorize it.

Environment

Release : 6.7, 6.8

Component : Management Server, ROC, NAC

Cause

New Security Configuration host header features added in 6.7.4: Security Configuration

Resolution

As documented (here: Security Configuration), update the http.request.header.allowedHosts setting. You do not have to add multiple entries. But, if you need to then this can be done by using a comma separated list.

Example:

http.request.header.allowedHosts = my.alias.to.roc.com, my.servername, ip.address.of.mgmtserver

Feedback

thumb_up Yes

thumb_down No