BADQueryChars ACO parameter

Document ID : KB000016626
Last Modified Date : 14/02/2018
Show Technical Document Details
Introduction:

BADQueryChars ACO parameter

Question:

I'm running a Web Agent and I'm trying to configure the ACO Parameter

BADQueryChars. Does BADQueryChars only support a single character

value separated by comas ?

 

Environment:
Any SSO version
Answer:

In the BADQueryChars, we can put values in 4 ways :

 

Single character encoded like A : %65

A character range encoded like : %61-%70

String like : SELECT

String in Hexadecimal like : 53454c4543540d0a

 

So the BADQueryChars would look like this :

 

BADQueryChars="%65,%61-%70,SELECT,53454c4543540d0a"

 

 

Additional Information:

https://docops.ca.com/ca-single-sign-on/12-52-sp1/en/configuring/web-agent-configuration/user-protection-and-tracking/help-prevent-attacks#HelpPreventAttacks-SpecifyBadQueryCharacters