Clicking on the Intrusion Defense Firewall (IDF) Manage Program shows the following error:
Unable to open Intrusion Defense Firewall interface. The plug-in could not validate the session. Please see the server0.log in the installation directory for more information.
The server0.log file also recorded the following error messages:
Apr 12, 2012 3:47:07 PM com.thirdbrigade.officescanplugin.HTTPFilter processTransferScreenRequest
WARNING: Unable to grant access
java.lang.SecurityException
Follow the procedure in this article to resolve the issue.
If the server0.log file contains the entry "Exception caught attempting to start a job search", please check the KB article: Unable to log in to the Intrusion Defense Firewall web console - Exception caught attempting to start a job search.
The entry in the server0.log file shows that the OfficeScan Server plugin is unable to obtain the password to log in to the IDF web console. The password and user ID is usually stored under the following registry key:
[HKEY_LOCAL_MACHINE\SOFTWARE\TrendMicro\OfficeScan\Addon\IDF]
"IDFPASS"=""
"IDFUSER"="Administrator"
If one of the two registry key is missing, please do the following:
-
Re-create the missing registry keys manually.
-
Open the Registry Editor.
Always back up the whole registry before making any modifications. Incorrect changes to the registry can cause serious system problems. - Go to [HKEY_LOCAL_MACHINE]\SOFTWARE\Trend Micro\OfficeScan\Addon\IDF.
-
Manually add a New String Value for the following:
IDFPASS: Your own password
IDFUSER: Administrator
-
-
Go to the command line and run the following commands under Intrusion Defense Firewall directory:
idf_c.exe -action unlockout -username USERNAME -newpassword NEWPASSWORD
This will reset the password for the administrator user account. Make sure that the password matches the one specified in the registry key.
-
Restart the following services:
- OfficeScan Plug-in Manager service (along with Intrusion Defense Firewall service).
- IIS Admin Service or Apache Service
- Log in to the web console and verify if login is now successful.