Access Gateway Service redirect message different from Access Gateway APpliance

  • 7007895
  • 15-Feb-2011
  • 26-Apr-2012

Environment

Novell Access Manager 3.1 Access Gateway APpliance upgraded to Access Gateway Appliance
Novell Access Manager 3.1 Support Pack 3 applied

Situation

With the 3.1 Linux Access Gateway (LAG) appliance setup to redirect HTTP request to HTTPS in the proxy configuration, any user request destined for TCP port 80 on the LAG proxy is redirected with the following html document :


<HTML><HEAD><TITLE>Novell Proxy</TITLE></HEAD><BODY><b><p>HTTP request is being redirected to HTTPS.<p><A HREF="https://voicezone.novell.com:443/">redirect</A> </b></BODY></HTML>


The user is then correctly redirected to HTTPS port 443.


With the 3.1 Access Gateway Services (AGS), the html document returned with the redirect is changed to 


<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">

<html><head>

<title>302 Found</title>

</head><body>

<h1>Found</h1>

<p>The document has moved <a href="https://esp.novell.com:443/nesp/app/plogin?c=secure/user/password/uri&amp;%22https://phonemanager.novell.com/%22">here</a>.</p>


</body></html>


With the LAG,  the L4 load balancer fronting the LAG devices was configured to look for the string “redirect” in the response as part of a custom healthcheck - to see if the HTTP port is active. With the change in the 3.1 AGS, references to this "redirect" string will not find a match.

Resolution

Update the L4 health monitors to use the new string ie. to use “here” instead of “redirect”. The string is in the binary of Apache and would need a recompile - there are no configuration files allowing it to be set.