Information
Set the Access-Control-Allow-Credentials header in the web server responses. Required in Cross-Origin Resource Sharing (CORS) scenario.
- Disabled
- Enabled
The default is Disabled.
Solution
Log into the Cisco APIC Web Console:
Navigate to 'Fabric' -> 'Fabric Policies'.
Click 'Fabric Security'.
Expand 'Policies'
Expand 'Pod'
Expand 'Management Access'
For each 'Management Access' policy, in the 'HTTPS' section, ensure 'Allow Credentials' is set to 'Disabled'.