mmiltenberger Valued Contributor.
Valued Contributor.
805 views

CLE 3.9.13 Restricted Browser cannot "reCaptcha"


Preparing to roll out SSPR and we utilize the CLE. We have tried
whitelisting the https://www.google.com but continue to get denied when
doing a "refresh" in the Captcha. If we enter the Captcha response
correctly, the verification works correctly. It is just if someone
cannot read the current image and does a "refresh" to retrieve a new
image.

I have tried entering various formats of the url, but none works.
RestrictedBrowser.Log here:

Any thoughts?

15/10/02 09:08:03 GetHostFromURL Hostname is sspr.kumc.edu
15/10/02 09:08:03 GetHostFromURL Url is HTTPS
15/10/02 09:08:03 Run Getting a Whitelist URL.
15/10/02 09:08:03 GetHostFromURL Hostname is www.google.com
15/10/02 09:08:03 GetHostFromURL Url is HTTPS
15/10/02 09:08:03 GetHostFromURL Hostname is Recaptcha.reload()
15/10/02 09:08:03 GetHostFromURL Error 0x2ee6 from InternetCrackUrl
15/10/02 09:08:03 GetHostFromURL The URL specified a scheme other than
http or https
15/10/02 09:08:03 GetHostFromURL Hostname is www.google.com
15/10/02 09:08:03 GetHostFromURL Url is HTTPS
15/10/02 09:08:03 Run Checking Web Server certificate.
15/10/02 09:08:03 Run Navigating to the site.
15/10/02 09:08:03 GetHostFromURL Hostname is sspr.kumc.edu
15/10/02 09:08:03 GetHostFromURL Url is HTTPS
15/10/02 09:08:03 ValidateUrl Comparing host sspr.kumc.edu with target
host sspr.kumc.edu
15/10/02 09:08:03 ValidateUrl Its safe to Navigate to the URL.
15/10/02 09:08:03 OnBeforeNavigate2 Redirection to the
site[https://sspr.kumc.edu/sspr/public/ForgottenPassword] is allowed.
15/10/02 09:08:03 SetIEZoneMap The machine is not Server OS. So adding
sites to the IE Trusted Zone is skipped
15/10/02 09:08:12 GetHostFromURL Hostname is Recaptcha.reload()
15/10/02 09:08:12 ValidateUrl Comparing host sspr.kumc.edu with target
host Recaptcha.reload()
15/10/02 09:08:12 ValidateUrl Hostname mismatch. Navigation cancelled.
15/10/02 09:08:13 OnBeforeNavigate2 Redirection to the
site[javascript:Recaptcha.reload()] is not allowed.
15/10/02 09:08:15 GetHostFromURL Hostname is Recaptcha.reload()
15/10/02 09:08:15 ValidateUrl Comparing host sspr.kumc.edu with target
host Recaptcha.reload()
15/10/02 09:08:15 ValidateUrl Hostname mismatch. Navigation cancelled.
15/10/02 09:08:16 OnBeforeNavigate2 Redirection to the
site[javascript:Recaptcha.reload()] is not allowed.
15/10/02 09:08:22 SetIEZoneMap The machine is not Server OS. So adding
sites to the IE Trusted Zone is skipped


--
mmiltenberger
------------------------------------------------------------------------
mmiltenberger's Profile: https://forums.netiq.com/member.php?userid=201
View this thread: https://forums.netiq.com/showthread.php?t=54399


0 Likes
2 Replies
Anonymous_User Absent Member.
Absent Member.

Re: CLE 3.9.13 Restricted Browser cannot "reCaptcha"

mmiltenberger,

It appears that in the past few days you have not received a response to your
posting. That concerns us, and has triggered this automated reply.

Has your issue been resolved? If not, you might try one of the following options:

- Visit http://www.netiq.com/support and search the knowledgebase and/or check all
the other support options available.
- You could also try posting your message again. Make sure it is posted in the
correct newsgroup. (http://forums.netiq.com)

Be sure to read the forum FAQ about what to expect in the way of responses:
http://forums.netiq.com/faq.php

If this is a reply to a duplicate posting, please ignore and accept our apologies
and rest assured we will issue a stern reprimand to our posting bot.

Good luck!

Your NetIQ Forums Team
http://forums.netiq.com


0 Likes
mmiltenberger Valued Contributor.
Valued Contributor.

Re: CLE 3.9.13 Restricted Browser cannot "reCaptcha"


Just in case anyone reads this, NetIQ support stated that the he purpose
of reCaptcha is to prevent internet Bot’s from logging into your
system. Bot’s would only exist on the internet so the use of
reCaptcha on the internal network is unnecessary. You already know that
the users of CLE are real people and not just some bot attempting to
gain access to your system.
CLE/SSPR includes a mechanism to bypass the reCaptcha service when the
entity is known to be a human. This is by configuring the skip
parameter. Please see the pictures attached to this email for the
configuration of this option. In SSPR Configuration it is the "Captcha
Skip Parameter Value" Then you configure your CLE client's Link URL to
use that key that you specified in the SSPR Config. Then there is no
longer any Captcha/reCaptcha usage when calling SSPR from the CLE.


--
mmiltenberger
------------------------------------------------------------------------
mmiltenberger's Profile: https://forums.netiq.com/member.php?userid=201
View this thread: https://forums.netiq.com/showthread.php?t=54399


0 Likes
The opinions expressed above are the personal opinions of the authors, not of Micro Focus. By using this site, you accept the Terms of Use and Rules of Participation. Certain versions of content ("Material") accessible here may contain branding from Hewlett-Packard Company (now HP Inc.) and Hewlett Packard Enterprise Company. As of September 1, 2017, the Material is now offered by Micro Focus, a separately owned and operated company. Any reference to the HP and Hewlett Packard Enterprise/HPE marks is historical in nature, and the HP and Hewlett Packard Enterprise/HPE marks are the property of their respective owners.