Description of problem: Unable to log into Cloudforms with IE8 if the appliance is in the "internal website" security group Version-Release number of selected component (if applicable): cfme-5.3.4 How reproducible: all the time Steps to Reproduce: 1. set the "internet policy" so that the appliance is in the "internal website" group (any security level) 2. if you previously were logged into the appliance, clear out all cookies 3. open the appliance's webpage in internet explorer 8 4. watch the audit.log on the server to confirm the authentication passes 5. log into the appliance Actual results: a 403 page is displayed, announcing that "the website requires you to login" or a different message depending on the version of IE8 Expected results: able to log in Additional info: this behaviour is consistant with any level of security being set and with or without the checks on https enabled for the zone. it cannot be reproduced if the appliance is placed on the "internet" or "trusted websites" zones.
Felix, I am not able to reproduce this issue. I tried on 5.3.4 and 5.4.1 and was able to login successfully on IE8. Audit log also shows authentication passes. I did not placed the appliance in "trusted websites" zone. Can you please let me know what "internet policy" did you set so that the appliance is in the "internal website" group (any security level) ? ~Thanks, Aziza
I actually repeated the experiment with various settings, from low to high. I even selected the same settings as internet (that worked) and trusted. I was not able to access the appliance at all when placing the appliance in 'internal website' regardless of what security level was used, but also regardless of ssl verifications being turned on or off. that test system I used is running windows XP and this is the closest I got to replicating the issue the customer described, but the appliance also behaves differently in its rejection. the default security level was used for him, but he has a more updated version of IE8 than I had with winxp. what version were you using, and what security level?
Felix, I tried again with various settings, from low to high and was able to reproduce this issue.The user is unable to login and it displays "website requires you to login" see attached screenshot. ~Thanks, Aziza
Created attachment 1026983 [details] login failed
that's exactly the behaviour I hit. do you think that would be a IE8 bug? we may need to happend this to our documentation in some way if it is...
Created attachment 1027405 [details] Compatibility View settings window
I was able to reproduce locally and believe the culprit is a default setting in IE8. To verify, please go to the 'Page' menu and then the 'Compatibility View Settings' option. By default, 'Display intranet sites in Compatibility View' is checked. This is causing the problem, as the application is designed to be run in standards mode. I would recommend adding this to the documentation.
I passed that to my customer - I'll let you know if he updates me again, but he seems to have resolved to using firefox 38.0.1 from a usb key now.
Documented resolution in linked Solution.
Verified in 5.6.0, because it's not applicable for 5.5+, because IE8 is not supported for 5.5+.
Since the problem described in this bug report should be resolved in a recent advisory, it has been closed with a resolution of ERRATA. For information on the advisory, and where to find the updated files, follow the link below. If the solution does not work for you, open a new bug report. https://access.redhat.com/errata/RHBA-2016:1348