Carbon Black Cloud Login Gives "Invalid CORS request" Error After SAML Redirect

search cancel

Carbon Black Cloud Login Gives "Invalid CORS request" Error After SAML Redirect

book

Article ID: 400146

calendar_today

Updated On:

Products

Carbon Black Cloud Endpoint Standard (formerly Cb Defense) Carbon Black Cloud Enterprise EDR (formerly Cb Threathunter) Carbon Black Cloud Audit and Remediation (formerly Cb Live Ops) Carbon Black Cloud Prevention Carbon Black Cloud Workload

Issue/Introduction

After logging in and being redirected to the IDP / SAMP provider, an error "Invalid CORS request" is received.

Environment

Carbon Black Cloud
Federated (SAML enabled) login

Cause

This can occur when AuthHub sends the SAML request to one URL (the configured login URL), but the response comes from a different URL. Since the third party is changing origin URL, authhub rejects this.

Resolution

Collect a HAR File and HTTP Error Logs
Open a support case and provide the HAR file.
Support will analyze the request and add an exception for the unexpected origin URL.

Feedback

thumb_up Yes

thumb_down No