LogoDark mode logo
LogoDark mode logo
Contact SupportLoading Light/Dark Toggle

    • Troubleshooting Open Access (v5 & v6)
    • Troubleshooting Open Access (v4)
    • Open Access: You do not have the required permissions or your current license does not include Open Access
    • Open Access: A valid mapping was not found for an Open Access page
    • Open Access: Some tiles on the Open Access page are not shown
    • Open Access - "An error occurred loading this dashboard" - Checking the Open Access Loopback URL on v4
    • Open Access: Open Access dashboards are cut off or show an unusable fixed scroll bar
    • HttpAntiForgeryException occurred on an endpoint
  • Collecting diagnostic information
  • Operations Manager 2012 Data Warehouse Health Check Script
  • Where to find log files

troubleshootingopen accesshttpantiforgeryexception

HttpAntiForgeryException occurred on an endpoint

When Open Access dashboards or tiles are embedded in other pages, such as SharePoint, you may see an error where the tiles do not load.

You may see the following error on the embedded Open Access dashboard or tile:

An unknown error occurred attempting to load this content.

And in the SquaredUp log:

[ERR] HttpAntiForgeryException occurred on endpoint: /ext-scomcore-scom/objects

This means that the browser is stripping cookies, specifically the RequestVerificationToken, when requesting data while loading Open Access, the server hosting the Open Access dashboard rejects the request and the tiles on the Open Access dashboard fail to load.

If the dashboard or site is not showing at all see Why isn't my site showing? Troubleshooting embedded websites

Edit the web.config

  1. Find the web.config file located in the SquaredUp folder.

    The default location for the SquaredUp folder is C:\inetpub\wwwroot\SquaredUp

    For v5 it is C:\inetpub\wwwroot\SquaredUpv5 and for v4 C:\inetpub\wwwroot\SquaredUpv4.

    A custom location may have been chosen during the installation.

    Name of the SquaredUp folder

    The default name of the SquaredUp folder is SquaredUp for v6 and above.

    For v5 it is SquaredUpv5, and for v4 SquaredUpv4.

    Create a backup of the web.config file by copy and pasting the file to a different location.

    Open the web.config file in the SquaredUp folder as an administrator.

  2. Find the following line in the web.config:
    <httpCookies httpOnlyCookies="true" />
    Change it to:
    <httpCookies httpOnlyCookies="true" requireSSL="true" />
    Or if you want to host SquaredUp within another domain, you need to do this instead:
    <httpCookies httpOnlyCookies="true" sameSite="None" requireSSL="true" />
  3. In IIS restart the SquaredUp application pool.

If you are using Iframe embed code you can use the following:

<iframe
src="OpenAccess URL"
width="100%"
height="1000px"
frameborder="0"
scrolling="no"
sandbox="allow-scripts allow-forms allow-top-navigation allow-popups allow-popups-to-escape-sandbox allow-same-origin allow-top-navigation-by-user-activation">
</iframe>

The code above contains optional settings such as "width" which can be removed if not needed, however it's advised to keep the "sandbox" option which also contributes to this working.

Was this article helpful?


Have more questions or facing an issue?
Submit a ticket

On this page

  • Edit the web.config

Footer

Sites

  • SQUAREDUP
  • SQUAREDUP DS
  • DOWNLOAD
  • COMMUNITY ANSWERS

Quick Links

  • SUBMIT A REQUEST
  • EVENTS
  • CAREERS

Small Print

  • PRIVACY POLICY
  • TERMS AND CONDITIONS
Youtubex (Twitter)LinkedIn

© SquaredUp 2025