Error logging into Symantec EDR from the SSO email invitation link
Article ID: 176340
Updated On:
Products
Endpoint Detection and Response
Issue/Introduction
An administrator adds a SSO user through the Symantec EDR appliance console. The user receives the email invitation link and clicks on it. The NSL account is created. The user is redirected to the EDR appliance console, but error message appears.
401 error message
Environment
This issue only occurs on the Chrome and Brave browsers for the initial login.
Cause
If the user has never accessed EDR, no XSRF token is generated for EDR appliance. If users follow the link in email, they are redirected to the Norton Secure Login (NSL) server. Users provide credentials and the NSL server redirects the request to EDR appliance. Supported browsers generate the XSRF token with the EDR session. But Chrome and Brave browsers don't.
This issue appears only in first login on Chrome or Brave browsers. Thereafter, there are no issues in accessing SEDR appliance on those browsers.
Resolution
User can do one of two things:
- Before he sets up his SSO, user should access the EDR console first. Then click the link in the SSO invite and set up IDP.
or
- After the user sets up SSO and receives the 401 error, have the user go to the EDR appliance console again.
Feedback
Yes
No
Powered by
