Question4Replies815Views krishnat0687 Member since 2014 2 posts Express Scripts Posted: September 27, 2018Last activity: October 5, 2018 Closed CSRF Token not generatedHiFollowing https://community.pega.com/knowledgebase/articles/configuring-csrf-protection from Pega, Issue is we dont see token getting generated. Below are set at DSS:prconfig/security/csrf/securedActivities/defaultValues= included class with activity names"prconfig/security/csrf/mitigation/defaultValue =trueUsing Pega7.2Any one have similar issue?, if not can you share detailed steps how its implemented.Thank you Security System Administration ×Close popoverFacebookTwitterLinkedinEmail Copy Link Copied! Moderation Team has archived post This thread is closed to future replies. Content and links will no longer be updated. If you have the same/similar Question, please write a new Question. Posted: 2 years agoKipJackson_GCS MOD replied to krishnat0687Hello, I am not sure if you reviewed the information in the following post --> https://community1.pega.com/community/product-support/question/empty-csrf-token Posted: 2 years agokrishnat0687 Express Scripts replied to KipJackson_GCSReviewed it didn't help. DSS was set with Pega-Engine as owning RS. Posted: 2 years agokrishnat0687 Express Scripts replied to krishnat0687Tried below Steps which didn't resolve issue. Couldn't see any Token in URL as specified by article. DSS settings, Restarted Server. ID Pega-Engine • prconfig/security/csrf/secureall/default RS Pega-Engine Value true ID Pega-Engine • prconfig/security/csrf/validreferers/default RS Pega-Engine Value "Added URL of application" ID Pega-Engine • prconfig/security/csrf/mitigation/default RS Pega-Engine Value true Posted: 2 years agoMarissaRogers MOD replied to krishnat0687Hey krishnat0687! Since you are talking about system settings we'd like to ask that you open a Support Request (please reference this thread) so that we can talk about this with you offline. Please let us know the SR ID once opened. Thanks!