• After generating a support bundle in VCF Operations for Networks 9.0.x, the following error is displayed when an attempt to download it is made:
  
  {"code":401,"message":"HTTP 401 Unauthorized")
  
  
• This error is only generated sporadically and only when logged in as an SSO user. It does not occur when logged in as a local admin user.
• You see messages similar to the following in the /var/log/arkin/resapilayer/resapilayer.log file on the platform node:
  
  

  2025-09-25T21:21:31.000743Z ERROR restapilayer 6852 [netw@4413 class="vnera.restapilayer.SessionUtils" thread="dw-484761 - POST /management/download/sb.proxy.############.tar.gz" method="validateCsrfToken" line="245"] CSRF tokens are wrong. Subject=org.apache.shiro.web.subject.support.WebDelegatingSubject@4aeef735, internal:###_############== user: ###_############==

VCF Operations for Networks 9.0.0 and 9.0.1

When an SSO user logs in to VCF Operations for Networks 9.0.x, a CSRF token is generated which holds authorization information. The VCF Operations for Networks 9.0.x UI sometimes includes a extra character in the token, rendering it invalid for certain operations.

This is a known issue affecting VCF Operations for Networks 9.0.x. There is currently no resolution.

To workaround this issue, log out and back in and attempt to download the support bundle again.
As this issue does not occur for the local admin user, attempting to download the support bundle as that user will never produce the issue.