Hi experts, how are you?
We have here at my company, the Enterprise Portal, version 7.30 SP08 installed.
We use the Apache to run the ProxyReverse and Webdispatcher to load balance.
We recently configured the UWL, and after some weeks starts to show us some errors and we don't know why. These erros appear when the user press the refresh icon.
#2.0^H#2013 07 10 14:48:45:794#0-300#Error#com.sap.engine.services.servlets_jsp.Security#
com.sap.ASJ.web.000781#BC-JAS-WEB#servlet_jsp#C0000A01029703810000000000006B88#19079652000000003##com.sap.engine.services.servlets_jsp.Security#Guest#0##CF82C5AAE98811E2C61F0000012321E4#cf82c5aae98811e2c61f0000012321e4#cf82c5aae98811e2c61f0000012321e4#0#Thread[HTTP Worker [@1075169933],5,Dedicated_Application_Thread]#Plain##
The received security session id related cookie is not valid. The current request will be isolated in a new session. There might be a few reasons causing this behavior: 1) Possible session fixation hacker's attack. 2) The received security session id cookie is already outdated. One possible solution is increasing the value of the 'SecuritySessionIdGracePeriod' servlet_jsp property. For more information read SAP Note 1464914. 3) No security session id cookie is sent (over http) because it is protected via custom configuration of the http service properties 'SecuritySessionIDHTTPSProtection' and 'SystemCookiesHTTPSProtection'. Revise the configuration of the http service properties or adapt the problematic scenario accordingly.#
The problem is intermittent, and some times appear, some times no.
Have you ever seen this error before?
If yes, could you send us what you made to solve this issue?
Thanks a lot
Marcos.
