12.3.3 Removing the Clickjacking Filter

In Access Gateway’s web.xml, comment out the following Tomcat filter configuration:

<filter>
    <filter-name>TomcatSameOriginFilter</filter-name>
    <filter-class>org.apache.catalina.filters.HttpHeaderSecurityFilter</filter-class>
    <init-param>
        <param-name>antiClickJackingOption</param-name>
        <param-value>SAMEORIGIN</param-value>
    </init-param>
</filter>
<filter-mapping>
    <filter-name>TomcatSameOriginFilter</filter-name>
    <url-pattern>/*</url-pattern>
</filter-mapping>

For information about how to open and modify a file, see Modifying Configurations in the NetIQ Access Manager Appliance 5.0 Administration Guide.