[GH-ISSUE #813] BUG: 500 errors during offboarding process - No 'Access-Control-Allow-Origin' header is present on the requested resource. #409

New issue

Closed

opened 2026-03-02 12:41:59 +03:00 by kerem · 3 comments

kerem commented 2026-03-02 12:41:59 +03:00

Owner

Copy link

Originally created by @SuburbanTotoro on GitHub (Mar 8, 2022).
Original GitHub issue: https://github.com/KelvinTegelaar/CIPP/issues/813

Describe the bug
During Step 4 of the offboarding process, "request failed with status code 500" appears and all steps appear to fail. No actions appear to occur, and manual offboarding is required.

To Reproduce
Steps to reproduce the behavior:

1. Identity management -> Offboarding Wizard
2. Select a tenant, user, offboarding settings
3. Review and confirm
4. Confirm and "request failed with status code 500" appears and steps do not complete

Expected behavior
The expected behavior is that the offboarding wizard completes the offboarding task.

Screenshots

Desktop (please complete the following information):

• OS: Windows 11 with Februrary 2022 rollup applied
• Browser Edge
• Version ~99.0.1150.30

Additional context
The console is returning this error:

/identity/reports/azure-ad-connect-report?customerId=ac9f8972-f339-4d51-9a5d-aa8a57c226cf:1

Access to manifest at '[https://identity.azurestaticapps.net/.redirect/aad?hostName=cipp.genuine.network&staticWebAppsAuthNonce=H8bG10QpTFYkDQhU%2bTp%2fRbHf2o%2b0qMpa%2bSIglRcJGi44d6awxIBkZ00ukbqQR%2fQi2zSJiZ1m4g3JiohrDQmAGaw0wVDmgou4l4COYr7Rv8UVHxH228gvOBAixQ5MvfH5&functionKeyVersion=0'](https://identity.azurestaticapps.net/.redirect/aad?hostName=cipp.genuine.network&staticWebAppsAuthNonce=H8bG10QpTFYkDQhU%2bTp%2fRbHf2o%2b0qMpa%2bSIglRcJGi44d6awxIBkZ00ukbqQR%2fQi2zSJiZ1m4g3JiohrDQmAGaw0wVDmgou4l4COYr7Rv8UVHxH228gvOBAixQ5MvfH5&functionKeyVersion=0%27) (redirected from '[https://cipp.genuine.network/manifest.json')](https://cipp.genuine.network/manifest.json%27)) from origin '[https://cipp.genuine.network']() has been blocked by CORS policy: No 'Access-Control-Allow-Origin' header is present on the requested resource.
identity.azurestaticapps.net/.redirect/aad?hostName=cipp.genuine.network&staticWebAppsAuthNonce=H8bG10QpTFYkDQhU%2bTp%2fRbHf2o%2b0qMpa%2bSIglRcJGi44d6awxIBkZ00ukbqQR%2fQi2zSJiZ1m4g3JiohrDQmAGaw0wVDmgou4l4COYr7Rv8UVHxH228gvOBAixQ5MvfH5&functionKeyVersion=0:1

Failed to load resource: net::ERR_FAILED
users:1

Access to internal resource at '[https://identity.azurestaticapps.net/.redirect/aad?hostName=cipp.genuine.network&staticWebAppsAuthNonce=hTYXuNosX6HGsyyVZq72twc0taztZxcQrhhEGQ2Bn9qTFkNwSWhdLvaWgDudDN8HY3jVNmiDkH6m459GelzVhDy4oLHEHeC0LyOAOe6Kb%2fMP7G97izD%2fsIZ3TYGa03CJ&functionKeyVersion=0'](https://identity.azurestaticapps.net/.redirect/aad?hostName=cipp.genuine.network&staticWebAppsAuthNonce=hTYXuNosX6HGsyyVZq72twc0taztZxcQrhhEGQ2Bn9qTFkNwSWhdLvaWgDudDN8HY3jVNmiDkH6m459GelzVhDy4oLHEHeC0LyOAOe6Kb%2fMP7G97izD%2fsIZ3TYGa03CJ&functionKeyVersion=0%27) (redirected from '[https://cipp.genuine.network/manifest.json')](https://cipp.genuine.network/manifest.json%27)) from origin '[https://cipp.genuine.network']() has been blocked by CORS policy: No 'Access-Control-Allow-Origin' header is present on the requested resource

Originally created by @SuburbanTotoro on GitHub (Mar 8, 2022). Original GitHub issue: https://github.com/KelvinTegelaar/CIPP/issues/813 **Describe the bug** During Step 4 of the offboarding process, "request failed with status code 500" appears and all steps appear to fail. No actions appear to occur, and manual offboarding is required. **To Reproduce** Steps to reproduce the behavior: 1. Identity management -> Offboarding Wizard 2. Select a tenant, user, offboarding settings 3. Review and confirm 4. Confirm and "request failed with status code 500" appears and steps do not complete **Expected behavior** The expected behavior is that the offboarding wizard completes the offboarding task. **Screenshots** <img width="724" alt="offboard" src="https://user-images.githubusercontent.com/96153222/157304387-46c5c1b6-199b-4428-9b8b-5691f7d12349.png"> **Desktop (please complete the following information):** - OS: Windows 11 with Februrary 2022 rollup applied - Browser Edge - Version ~99.0.1150.30 **Additional context** The console is returning this error: ``` /identity/reports/azure-ad-connect-report?customerId=ac9f8972-f339-4d51-9a5d-aa8a57c226cf:1 Access to manifest at '[https://identity.azurestaticapps.net/.redirect/aad?hostName=cipp.genuine.network&staticWebAppsAuthNonce=H8bG10QpTFYkDQhU%2bTp%2fRbHf2o%2b0qMpa%2bSIglRcJGi44d6awxIBkZ00ukbqQR%2fQi2zSJiZ1m4g3JiohrDQmAGaw0wVDmgou4l4COYr7Rv8UVHxH228gvOBAixQ5MvfH5&functionKeyVersion=0'](https://identity.azurestaticapps.net/.redirect/aad?hostName=cipp.genuine.network&staticWebAppsAuthNonce=H8bG10QpTFYkDQhU%2bTp%2fRbHf2o%2b0qMpa%2bSIglRcJGi44d6awxIBkZ00ukbqQR%2fQi2zSJiZ1m4g3JiohrDQmAGaw0wVDmgou4l4COYr7Rv8UVHxH228gvOBAixQ5MvfH5&functionKeyVersion=0%27) (redirected from '[https://cipp.genuine.network/manifest.json')](https://cipp.genuine.network/manifest.json%27)) from origin '[https://cipp.genuine.network']() has been blocked by CORS policy: No 'Access-Control-Allow-Origin' header is present on the requested resource. identity.azurestaticapps.net/.redirect/aad?hostName=cipp.genuine.network&staticWebAppsAuthNonce=H8bG10QpTFYkDQhU%2bTp%2fRbHf2o%2b0qMpa%2bSIglRcJGi44d6awxIBkZ00ukbqQR%2fQi2zSJiZ1m4g3JiohrDQmAGaw0wVDmgou4l4COYr7Rv8UVHxH228gvOBAixQ5MvfH5&functionKeyVersion=0:1 Failed to load resource: net::ERR_FAILED users:1 Access to internal resource at '[https://identity.azurestaticapps.net/.redirect/aad?hostName=cipp.genuine.network&staticWebAppsAuthNonce=hTYXuNosX6HGsyyVZq72twc0taztZxcQrhhEGQ2Bn9qTFkNwSWhdLvaWgDudDN8HY3jVNmiDkH6m459GelzVhDy4oLHEHeC0LyOAOe6Kb%2fMP7G97izD%2fsIZ3TYGa03CJ&functionKeyVersion=0'](https://identity.azurestaticapps.net/.redirect/aad?hostName=cipp.genuine.network&staticWebAppsAuthNonce=hTYXuNosX6HGsyyVZq72twc0taztZxcQrhhEGQ2Bn9qTFkNwSWhdLvaWgDudDN8HY3jVNmiDkH6m459GelzVhDy4oLHEHeC0LyOAOe6Kb%2fMP7G97izD%2fsIZ3TYGa03CJ&functionKeyVersion=0%27) (redirected from '[https://cipp.genuine.network/manifest.json')](https://cipp.genuine.network/manifest.json%27)) from origin '[https://cipp.genuine.network']() has been blocked by CORS policy: No 'Access-Control-Allow-Origin' header is present on the requested resource ```

kerem 2026-03-02 12:41:59 +03:00

• closed this issue
• added the
  unconfirmed-by-user
  label

kerem commented 2026-03-02 12:42:00 +03:00

Author

Owner

Copy link

@KelvinTegelaar commented on GitHub (Mar 8, 2022):

CORS is never an issue, and you can ignore that.

Your issue most likely is related to the access token, most tasks there use the Exchange token. Perform an accces check for that tenant to see if its working.

Small note; currently half of the internet is offline due to server disruptions, might also be related to that if this is the only error.

<!-- gh-comment-id:1062094249 --> @KelvinTegelaar commented on GitHub (Mar 8, 2022): CORS is never an issue, and you can ignore that. Your issue most likely is related to the access token, most tasks there use the Exchange token. Perform an accces check for that tenant to see if its working. Small note; currently half of the internet is offline due to server disruptions, might also be related to that if this is the only error.

kerem commented 2026-03-02 12:42:01 +03:00

Author

Owner

Copy link

@SuburbanTotoro commented on GitHub (Mar 9, 2022):

Thank you very much Kevin, running the tenant access check shows an error I know how to deal with:
Failed to connect to Exchange: AADSTS50078: Presented multi-factor authentication has expired due to policies configured by your administrator, you must refresh your multi-factor authentication to access '00000002-0000-0ff1-ce00-000000000000'. Trace ID: a3e7f991-dfdf-4b80-bb05-53dfd3eac200 Correlation ID: efe767bb-c6a9-4eeb-8109-e9a4bbb9a37d Timestamp: 2022-03-09 16:58:02Z

I hope you have a great day and really appreciate such a quick response to this,
Benjamin Sanchez​
Senior Automation Engineer

T:
971-288-0880tel:9712880880
E:
@.@.>
W:
https://genuinetechnology.comhttps://genuinetechnology.com/
[Genuine Technology Logo]https://genuinetechnology.com/

Please help us serve you! Send all requests through the 24/7 support team:

​​Email: @.*** @.***>
​Phone: 9tel:971888891171-888-8911tel:9718888911
​
​https://mygenuine.tech/Requests made directly to individual staff may ​have a significantly delayed response ​and do not have SLA guarantees
​

From: KelvinTegelaar @.>
Sent: Tuesday, March 8, 2022 10:49 AM
To: KelvinTegelaar/CIPP @.>
Cc: Benjamin Sanchez @.>; Author @.>
Subject: Re: [KelvinTegelaar/CIPP] BUG: 500 errors during offboarding process - No 'Access-Control-Allow-Origin' header is present on the requested resource. (Issue #813)

CORS is never an issue, and you can ignore that.

Your issue most likely is related to the access token, most tasks there use the Exchange token. Perform an accces check for that tenant to see if its working.

Small note; currently half of the internet is offline due to server disruptions, might also be related to that if this is the only error.

—
Reply to this email directly, view it on GitHubhttps://github.com/KelvinTegelaar/CIPP/issues/813#issuecomment-1062094249, or unsubscribehttps://github.com/notifications/unsubscribe-auth/AW5S5BW2TLYLYU3HZATMTYTU66OJZANCNFSM5QHF2NBA.
Triage notifications on the go with GitHub Mobile for iOShttps://apps.apple.com/app/apple-store/id1477376905?ct=notification-email&mt=8&pt=524675 or Androidhttps://play.google.com/store/apps/details?id=com.github.android&referrer=utm_campaign%3Dnotification-email%26utm_medium%3Demail%26utm_source%3Dgithub.
You are receiving this because you authored the thread.Message ID: @.@.>>

<!-- gh-comment-id:1063147116 --> @SuburbanTotoro commented on GitHub (Mar 9, 2022): Thank you very much Kevin, running the tenant access check shows an error I know how to deal with: Failed to connect to Exchange: AADSTS50078: Presented multi-factor authentication has expired due to policies configured by your administrator, you must refresh your multi-factor authentication to access '00000002-0000-0ff1-ce00-000000000000'. Trace ID: a3e7f991-dfdf-4b80-bb05-53dfd3eac200 Correlation ID: efe767bb-c6a9-4eeb-8109-e9a4bbb9a37d Timestamp: 2022-03-09 16:58:02Z I hope you have a great day and really appreciate such a quick response to this, Benjamin Sanchez​ Senior Automation Engineer T: 971-288-0880<tel:9712880880> E: ***@***.******@***.***> W: https://genuinetechnology.com<https://genuinetechnology.com/> [Genuine Technology Logo]<https://genuinetechnology.com/> Please help us serve you! Send all requests through the 24/7 support team: ​​Email: ***@***.*** ***@***.***> ​Phone: 9<tel:9718888911>71-888-8911<tel:9718888911> ​ ​<https://mygenuine.tech/>Requests made directly to individual staff may ​have a significantly delayed response ​and do not have SLA guarantees ​ From: KelvinTegelaar ***@***.***> Sent: Tuesday, March 8, 2022 10:49 AM To: KelvinTegelaar/CIPP ***@***.***> Cc: Benjamin Sanchez ***@***.***>; Author ***@***.***> Subject: Re: [KelvinTegelaar/CIPP] BUG: 500 errors during offboarding process - No 'Access-Control-Allow-Origin' header is present on the requested resource. (Issue #813) CORS is never an issue, and you can ignore that. Your issue most likely is related to the access token, most tasks there use the Exchange token. Perform an accces check for that tenant to see if its working. Small note; currently half of the internet is offline due to server disruptions, might also be related to that if this is the only error. — Reply to this email directly, view it on GitHub<https://github.com/KelvinTegelaar/CIPP/issues/813#issuecomment-1062094249>, or unsubscribe<https://github.com/notifications/unsubscribe-auth/AW5S5BW2TLYLYU3HZATMTYTU66OJZANCNFSM5QHF2NBA>. Triage notifications on the go with GitHub Mobile for iOS<https://apps.apple.com/app/apple-store/id1477376905?ct=notification-email&mt=8&pt=524675> or Android<https://play.google.com/store/apps/details?id=com.github.android&referrer=utm_campaign%3Dnotification-email%26utm_medium%3Demail%26utm_source%3Dgithub>. You are receiving this because you authored the thread.Message ID: ***@***.******@***.***>>

kerem commented 2026-03-02 12:42:01 +03:00

Author

Owner

Copy link

@KelvinTegelaar commented on GitHub (Mar 11, 2022):

So fixed :) Will try to have somewhat clearer error messages in a future version too to show its an access token issue.

<!-- gh-comment-id:1065081439 --> @KelvinTegelaar commented on GitHub (Mar 11, 2022): So fixed :) Will try to have somewhat clearer error messages in a future version too to show its an access token issue.

Sign in to join this conversation.

No Branch/Tag specified

Branches Tags

main

docs

dev

dependabot/npm_and_yarn/dev/uiw/react-json-view-2.0.0-alpha.42

dependabot/npm_and_yarn/dev/tanstack/react-query-persist-client-5.96.2

dependabot/npm_and_yarn/dev/mui-tiptap-1.30.0

dependabot/npm_and_yarn/dev/tanstack/react-query-devtools-5.96.2

dependabot/npm_and_yarn/dev/recharts-3.8.1

dependabot/github_actions/dev/actions/setup-node-6.4.0

copilot/add-alert-for-report-only-ca

release/beta

release/nightly

docs-maintenance

v10.4.0

v10.3.0

v10.2.0

v10.1.0

v10.0.0

v8.8.0

v8.7.0

v8.6.0

v8.5.0

v8.4.0

v8.3.0

v8.2.0

v8.1.0

v8.0.0

v7.5.0

v7.4.0

v7.3.0

v7.2.0

v7.1.0

v7.0.1

v6.4.0

v6.3.0

v6.2.0

v6.1.0

v6.0.0

v5.9.0

v5.8.5

v5.8.0

v5.7.0

v5.6.0

v5.5.0

v5.4.0

v5.3.0

v5.2.0

v5.1.0

v5.0.0

v4.9.0

v4.8.0

v4.7.0

v.4.6.0

v4.5.0

v4.4.0

v4.3.0

v4.2.0

v4.1.0

v4.0.0

v3.8.0

v3.7.0

v3.6.0

v3.5.0

v3.4.0

v3.3.0

v3.2.0

v3.1.0

v3.0.0

v2.20.0

v2.19.0

v2.18.0

v2.17.0

v2.16.0

v2.15.0

v2.13.0

v2.12.0

v2.11.2

v2.1.11.0

v.2.10.0

v2.9.0

v2.8.0

v2.7.0

v2.6.0

v2.5.5

v2.5.0

v2.4.0

v.2.3.0

v2.2.0

v2.1.2

v2.1.1

v2.1.0

v2.0.1

2.0.0

v1.5.1

v1.5.0

v1.4.3

v1.4.2

v1.4.0

v1.3.0

v1.2.1

v1.2.0

1.1.0

release

Labels

Clear labels   

API

  

Feature

  

NotABug

  

NotABug

  

Planned

  

Sponsor Priority

  

Sponsor Priority

  

bug

  

documentation

  

duplicate

  

enhancement

  

needs more info

  

no-activity

  

no-priority

  

not-assigned

  

pull-request

Mirrored from GitHub Pull Request

  

react-conversion

  

react-conversion

  

roadmap

  

security

  

stale

  

unconfirmed-by-user

  

unconfirmed-by-user

  

wontfix

No labels

API

Feature

NotABug

NotABug

Planned

Sponsor Priority

Sponsor Priority

bug

documentation

duplicate

enhancement

needs more info

no-activity

no-priority

not-assigned

pull-request

react-conversion

react-conversion

roadmap

security

stale

unconfirmed-by-user

unconfirmed-by-user

wontfix

Milestone

Clear milestone

No items

No milestone

Projects

Clear projects

No items

No project

Assignees

Clear assignees

No assignees

1 participant

Notifications

Subscribe

Due date

The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference

starred/CIPP#409

No description provided.