Microsoft KB Archive/831119

= BUG: &quot;500 Internal Server Error&quot; Error Message When a User Closes a Browser Window That Contains a SecurID Logon Page =

Article ID: 831119

Article Last Modified on 1/3/2006

-

APPLIES TO


 * Microsoft Internet Security and Acceleration Server 2000 Service Pack 1
 * Microsoft Internet Security and Acceleration Server 2000 Standard Edition

-



SYMPTOMS
A user tries to visit a Web site that is published on a server computer that is running Microsoft Internet Security and Acceleration Server (ISA Server), and the Web publishing rules for the site are set to require SecurID authentication. When the browser makes the first request to the server, ISA Server displays the SecurID logon page in the browser window.

If the user closes this browser window without logging on, a new browser window opens. The user receives the following error message in the new browser window:

500 Internal Server Error - Unspecified error (-2147467259) Internet Security and Acceleration Server

Note If the user does not close the browser window that contains the SecurID logon page, and the user tries to visit a Web site that is located on a different server by typing a different URL in the address bar and pressing ENTER, the user receives the &quot;500 Internal Server Error&quot; error message in the existing browser window.

This behavior occurs only if both of the following are true:
 * The computer that is running ISA Server has Feature Pack 1 installed.
 * SecurID authentication is enabled in the Web publishing rule that is processed when the browser connects to the server.

This behavior does not occur if one of the following is true:
 * The user types valid credentials in the SecurID logon page and then submits the page, and ISA Server successfully authenticates the user's credentials before the user closes the browser window.
 * The user clicks Cancel on the SecurID logon page.



CAUSE
This behavior occurs because a problem exists in the SecurID authentication filter that is installed with ISA Server 2000 Feature Pack 1.



WORKAROUND
To avoid this behavior, follow these steps:  In a text editor such as Notepad, open the Useridandpasscode.htm file. This file is located in the \Sdisatemplates folder.  In line 6 of the file, change the need_cancel variable from false to true. For example, change var need_cancel = true to var need_cancel = false  Save and then close the file.

This change stops the browser from sending a new request to the server when the user closes the browser window or tries to visit a different site before authentication has completed.



MORE INFORMATION
The Useridandpasscode.htm file is installed with the SecurID authentication filter that is included with Feature Pack 1. ISA Server uses this file to generate the SecurID logon page that appears the first time that a user's browser connects to the server.

The SecurID logon page appears because SecurID authentication is enabled in the Web publishing rule that is processed when the browser connects to the server.

Additional query words: SecureID RSA http ACE Server

Keywords: kberrmsg kbbug kbpending KB831119

-

[mailto:TECHNET@MICROSOFT.COM Send feedback to Microsoft]

© Microsoft Corporation. All rights reserved.