Contributed by Dennis McCabe Jr, John Hess, Robert Sherwin, Cisco TAC Engineers.
Due to recent changes in the specifications for the XMLHttpRequest object's getAllResponseHeaders method, major browsers have begun changing their implementation. This can cause an issue on ESA (CSCvf51219), WSA (CSCvf51310) and SMA (CSCvf51283) appliances where the login button does not work correctly.
Users running the impacted browser versions below may experience problems logging into the GUI of their appliances:
Note: Greasemonkey and Tampermonkey are 3rd party userscript manager extensions for browsers, as listed. These add-ons are not supportable by Cisco TAC Support.
While this script was previously supported within Chrome, recent changes were made to Chrome where userscripts are now blocked from performing specific modifications. Due to this, the userscript workaround is no longer supported in Chrome. Instead, please proceed using one of the other browsers below as a workaround or by upgrading to a fixed version of AsyncOS.
Return to your GUI login for your appliance and log-in.
You may validate the script install in Tapermonkey by clicking the Tapermonkey icon in the browser bar and then clickingDashboard. You should see Cisco WSA Login Workaround listed and marked as "Enabled".
You may validate the script install in Greasemonkey by clicking the Greasemonkey icon in the browser and then clicking Cisco WSA Login Workaround. The description, version, and last updated fields should all be populated.
Note: Despite the script being named Cisco WSA Login Workaround, please note that it is for the ESA, SMA, and WSA. The same script will resolve the behavior on all three products.