Role switching results in WAF Javascript Error
search cancel

Role switching results in WAF Javascript Error

book

Article ID: 231453

calendar_today

Updated On:

Products

CA Service Management - Service Desk Manager CA Service Desk Manager

Issue/Introduction

Attempting to switch from role to any role within SDM, seeing an error arise, related to WAF and Javascript.

Environment

Release : 17.3 or higher

Component : SDM - Vulnerability

Cause

The role switch error is due to a network device, such as a firewall, that is scanning and blocking requests due to an attack seen in WAF scanning.

The role switch trips up the firewall due to the associated url containing the word 'javascript:', which the firewall perceives as a vulnerability to xss attacks

Resolution

The local security and network teams will need to review if this setting can be disabled on the firewall, or an exception granted for Service Desk.