HTTP/1.1 200 OK
Server: CloudFront
Content-Type: text/html; charset=utf-8
Content-Length: 1769
Connection: close
Vary: Accept-Encoding
Date: Sat, 10 Jan 2026 06:19:28 GMT
x-request-id: CUSTOMER-AGK-8821-4f05-ae83-4d3ac220f1fb-t1768025968906
set-cookie: _csrf-prod-us=YwH%2B4gNRHbO864gCOTLh%2B3%2FiFb2BOb4qB1KuJbO5CQeuUkpCfAKmt3St6tS%2BVifTNrrc92%2FW9O9Wm1824nXqobIpLvf48AwRuVDhAndaQW2TlsKdyTBBtvRG%2BGhrEiCSwPKqFA%3D%3D; Max-Age=2592000; Domain=cu.cepheid.com; Path=/; Expires=Mon, 09 Feb 2026 06:19:28 GMT; HttpOnly; Secure; SameSite=Lax
set-cookie: mts-us-east-1=s%3AvIU4eVy2x7fF7AegM3VyZUj4sX67MM04.B5OG6Ml%2BnjFA2m6w6Xv5T4e8kQGKFE1TWt4FEo%2B%2BqfI; Path=/; HttpOnly; Secure; SameSite=None
mtr: us-east-1
etag: W/"6e9-utfYM9hF0DKj1sFqEfGIX70XKak"
x-envoy-upstream-service-time: 30
Access-Control-Expose-Headers: x-request-time, x-envoy-upstream-service-time, x-request-id, server-timing
X-Content-Type-Options: nosniff
X-Request-Time: 0.032;
content-security-policy: frame-ancestors 'self' *.actionaly.com *.aiwyn.ai *.alkami.com *.ameyo.com *.annata.net *.arht.tech *.atlassian.com *.atlassian.net *.brighter.ai *.centripetal.ai *.classtime.com *.clearwaveinc.com *.contentsquare.com *.crm.ondemand.com *.darktrace.com *.doubleoctopus.com *.dynamics.com *.enable.com *.enable.us *.engagingnetworks.net *.flyr.com *.force.com *.forduniversity.com *.gainsight.com *.h-dnet.com *.highspot.com *.hubspot.com *.hubspoteditor.com *.ipresent.com *.ipresentweb.com *.justappraised.com *.live.com *.mediafly.com *.mindtickle.app *.mindtickle.com *.mismo.team *.myfreshworks.com *.numero.ai *.okta.com *.papirfly.com *.pascivite.com *.peoplegrove.com *.propelleraero.com *.reverselogix.com *.rheinberg-pools.de *.rready.com *.salesforce-communities.com *.salesforce-experience.com *.salesforce.com *.schoolmint.com *.schoolstatus.com *.seismic.com *.site.com *.splunkcoach.com *.stripe.partners *.supremeopti.com *.talview.com *.techsee.me *.tenable.com *.theiquest.com *.thermofisher.one *.tracegains.com *.trexgroup.com *.trucesoftware.com *.trustnetinc.com *.twilio.com *.uniphorecloud.com *.unraveldata.com *.upshop.com *.voucherify.io *.wisesystems.com *.zendesk.com *.zoom.us digdeeper.sysdig.com *.showpad.biz *.office.com *.office365.com partnertraining.bluebeam.com *.goto.com enablement.cribl.io *.bitsight.com *.outreach.io *.develop.lightning.force.com *.lightning.force.com *.redhat.com *.everfox.com *.keyfactor.com *.bottomline.com *.keymarkinc.com *.browserstack.com *.prescryptive.com *.lincoln.com *.haasalert.com *.lincolnforyou.com *.firstsource.com *.druva.com *.lookbookhq.com *.cisco.com *.oneidentity.com *.whatfix.com whatfix.com *.climateimpact.com *.graphisoft.com *.huntress.com *.expel.com *.sayari.com *.hellopebl.com *.saludamedical.com *.checkr.com
X-Cache: Miss from cloudfront
Via: 1.1 0d32e2bb3355cc98ae5131b47150be6e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: BRU50-P2
X-Amz-Cf-Id: UlpsivQ1kUM7K7tV3AUyMcoL2Jrmkb85mEN7IMUHMhnL9SF9L-2xuw==
Strict-Transport-Security: max-age=31536000; includeSubDomains
Server-Timing: cdn-upstream-layer;desc="Origin Shield",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=6,cdn-upstream-fbl;dur=43,cdn-cache-miss,cdn-pop;desc="BRU50-P2",cdn-rid;desc="UlpsivQ1kUM7K7tV3AUyMcoL2Jrmkb85mEN7IMUHMhnL9SF9L-2xuw==",cdn-downstream-fbl;dur=147


<!DOCTYPE html>
<html xmlns="http://www.w3.org/1999/xhtml" dir="ltr" lang="en-US">

<head>
  <script type="text/javascript" nonce="5e0d52a8">
    var sameSiteNoneCompatible = "true" === "true";
    var query = '';
    var redirectUrl = '/' ;
    if (redirectUrl) {
          query = `?loginredirecturi=${encodeURIComponent(redirectUrl)}`
    }

    function getCookieValue (key, value, expires) {
      /* Note:
        We cannot set 'httpOnly' attribute in this cookie due to below two reasons:
        1. 'httpOnly' cookie can only be set by the server and not by any client side code.
        https://stackoverflow.com/questions/14691654/set-a-cookie-to-httponly-via-javascript
        2. We do not have access to location.hash in app-gatekeeper
        https://stackoverflow.com/questions/17744003/get-url-after-in-express-js-middleware-request/43280710
       */
      var cookie = key + "=" + value + "; expires=" + expires + '; path=/; Secure';
      if(sameSiteNoneCompatible) {
        cookie += '; SameSite=None'
      }
      return cookie;
    }

    function setCookie (key, value, days) {
        var date = new Date();
        days = days || 1;
        // Get unix milliseconds at current time plus number of days
        date.setTime(+ date + (days * 86400000)); //24 * 60 * 60 * 1000
        window.document.cookie = getCookieValue(key, value, date.toGMTString());
        return value;
    }

    var delete_cookie = function(key) {
        document.cookie = getCookieValue(key, '', 'Thu, 01 Jan 1970 00:00:01 GMT');
    };

    if (window.location.hash) {
      setCookie('hashRedirectURL', window.location.hash, 1);
    } else {
      delete_cookie('hashRedirectURL');
    }
    window.location.href = '/login' + query;
  </script>
</head>

</html>

HTTP/1.1 301 Moved Permanently
Server: CloudFront
Date: Mon, 22 Dec 2025 07:20:26 GMT
Content-Type: text/html
Content-Length: 167
Connection: close
Location: https://cu.cepheid.com/
X-Cache: Redirect from cloudfront
Via: 1.1 8b6b9c8098dac83ebe6cded46eac0192.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: FRA60-P13
X-Amz-Cf-Id: 3SOhu_MVnIv2VNKshoNHFt5xtqnwBWgVqlXM8T2KL1NuYBW_sDq3fg==
X-Content-Type-Options: nosniff

Page title: 301 Moved Permanently

<html>
<head><title>301 Moved Permanently</title></head>
<body>
<center><h1>301 Moved Permanently</h1></center>
<hr><center>CloudFront</center>
</body>
</html>

HTTP/1.1 200 OK
Server: CloudFront
Content-Type: text/html; charset=utf-8
Content-Length: 1769
Connection: close
Vary: Accept-Encoding
Date: Mon, 22 Dec 2025 07:20:26 GMT
x-request-id: CUSTOMER-AGK-096e-444f-a6b7-73b2323cde34-t1766388026196
set-cookie: _csrf-prod-us=TQk9%2FByoxj%2BfwHWcAmqZoP%2BziSK3DMocubnZerrEi2iHRug4x87B9ckTvdsAI7e7pBjlkKGdTpaJot8vuBH5odKal3UWFLnRTeiBFTRf88VD8PlELf3G3y0mgSdUSPDzAhrl0Q%3D%3D; Max-Age=2592000; Domain=cu.cepheid.com; Path=/; Expires=Wed, 21 Jan 2026 07:20:26 GMT; HttpOnly; Secure; SameSite=Lax
set-cookie: mts-us-east-1=s%3AGscWcxrhyEppPNQetJjIoPpzTrpuJfcp.bkm9YAma32cuQMcasknSZWKLHFp7wa3JnY1Qvuyi09o; Path=/; HttpOnly; Secure; SameSite=None
mtr: us-east-1
etag: W/"6e9-utfYM9hF0DKj1sFqEfGIX70XKak"
x-envoy-upstream-service-time: 31
Access-Control-Expose-Headers: x-request-time, x-envoy-upstream-service-time, x-request-id, server-timing
X-Content-Type-Options: nosniff
X-Request-Time: 0.032;
content-security-policy: frame-ancestors 'self' *.actionaly.com *.aiwyn.ai *.alkami.com *.ameyo.com *.annata.net *.arht.tech *.atlassian.com *.atlassian.net *.brighter.ai *.centripetal.ai *.classtime.com *.clearwaveinc.com *.contentsquare.com *.crm.ondemand.com *.darktrace.com *.doubleoctopus.com *.dynamics.com *.enable.com *.enable.us *.engagingnetworks.net *.flyr.com *.force.com *.forduniversity.com *.gainsight.com *.h-dnet.com *.highspot.com *.hubspot.com *.hubspoteditor.com *.ipresent.com *.ipresentweb.com *.justappraised.com *.live.com *.mediafly.com *.mindtickle.app *.mindtickle.com *.mismo.team *.myfreshworks.com *.numero.ai *.okta.com *.papirfly.com *.pascivite.com *.peoplegrove.com *.propelleraero.com *.reverselogix.com *.rheinberg-pools.de *.rready.com *.salesforce-communities.com *.salesforce-experience.com *.salesforce.com *.schoolmint.com *.schoolstatus.com *.seismic.com *.site.com *.splunkcoach.com *.stripe.partners *.supremeopti.com *.talview.com *.techsee.me *.tenable.com *.theiquest.com *.thermofisher.one *.tracegains.com *.trexgroup.com *.trucesoftware.com *.trustnetinc.com *.twilio.com *.uniphorecloud.com *.unraveldata.com *.upshop.com *.voucherify.io *.wisesystems.com *.zendesk.com *.zoom.us digdeeper.sysdig.com *.showpad.biz *.office.com *.office365.com partnertraining.bluebeam.com *.goto.com enablement.cribl.io *.bitsight.com *.outreach.io *.develop.lightning.force.com *.lightning.force.com *.redhat.com *.everfox.com *.keyfactor.com *.bottomline.com *.keymarkinc.com *.browserstack.com *.prescryptive.com *.lincoln.com *.haasalert.com *.lincolnforyou.com *.firstsource.com *.druva.com *.lookbookhq.com *.cisco.com *.oneidentity.com *.whatfix.com whatfix.com *.climateimpact.com *.graphisoft.com *.huntress.com *.expel.com *.sayari.com *.hellopebl.com *.saludamedical.com *.checkr.com
X-Cache: Miss from cloudfront
Via: 1.1 581599a51772a76c2489c9d094b70226.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: FRA60-P13
X-Amz-Cf-Id: M_6Xc0ZjHekwZ_h8MXeOTbFU8K_HRYhMKP_ccffuT7qBBLVfJmLBjA==
Strict-Transport-Security: max-age=31536000; includeSubDomains
Server-Timing: cdn-upstream-layer;desc="Origin Shield",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=4,cdn-upstream-fbl;dur=39,cdn-cache-miss,cdn-pop;desc="FRA60-P13",cdn-rid;desc="M_6Xc0ZjHekwZ_h8MXeOTbFU8K_HRYhMKP_ccffuT7qBBLVfJmLBjA==",cdn-downstream-fbl;dur=146


<!DOCTYPE html>
<html xmlns="http://www.w3.org/1999/xhtml" dir="ltr" lang="en-US">

<head>
  <script type="text/javascript" nonce="5e0d52a8">
    var sameSiteNoneCompatible = "true" === "true";
    var query = '';
    var redirectUrl = '/' ;
    if (redirectUrl) {
          query = `?loginredirecturi=${encodeURIComponent(redirectUrl)}`
    }

    function getCookieValue (key, value, expires) {
      /* Note:
        We cannot set 'httpOnly' attribute in this cookie due to below two reasons:
        1. 'httpOnly' cookie can only be set by the server and not by any client side code.
        https://stackoverflow.com/questions/14691654/set-a-cookie-to-httponly-via-javascript
        2. We do not have access to location.hash in app-gatekeeper
        https://stackoverflow.com/questions/17744003/get-url-after-in-express-js-middleware-request/43280710
       */
      var cookie = key + "=" + value + "; expires=" + expires + '; path=/; Secure';
      if(sameSiteNoneCompatible) {
        cookie += '; SameSite=None'
      }
      return cookie;
    }

    function setCookie (key, value, days) {
        var date = new Date();
        days = days || 1;
        // Get unix milliseconds at current time plus number of days
        date.setTime(+ date + (days * 86400000)); //24 * 60 * 60 * 1000
        window.document.cookie = getCookieValue(key, value, date.toGMTString());
        return value;
    }

    var delete_cookie = function(key) {
        document.cookie = getCookieValue(key, '', 'Thu, 01 Jan 1970 00:00:01 GMT');
    };

    if (window.location.hash) {
      setCookie('hashRedirectURL', window.location.hash, 1);
    } else {
      delete_cookie('hashRedirectURL');
    }
    window.location.href = '/login' + query;
  </script>
</head>

</html>

HTTP/1.1 200 OK
Server: CloudFront
Content-Type: text/html; charset=utf-8
Content-Length: 1769
Connection: close
Vary: Accept-Encoding
Date: Mon, 22 Dec 2025 07:20:26 GMT
x-request-id: CUSTOMER-AGK-fbef-4c4d-99f3-6ee655fd3aac-t1766388026242
set-cookie: _csrf-prod-us=5rcfYH%2FE%2FYk5sU44IiD6Ea2w0Bo1bnIlpzs2nfrgdE8TfaAl%2Flk662cdVLijm5bT6WgWkT3H62sNjF9k2Omwl5ndr3NCmQGSUoJbuHL62%2BWR8zfao4NAKz22m43fFO%2BeX0m1Lw%3D%3D; Max-Age=2592000; Domain=cu.cepheid.com; Path=/; Expires=Wed, 21 Jan 2026 07:20:26 GMT; HttpOnly; Secure; SameSite=Lax
set-cookie: mts-us-east-1=s%3Aq02sHcIcIo3r8N1Rwszr7RGrh5DL7iWW.Prai2UfIuoEF5OXb41jqyiDZxYQDLEt0EmqGvSGDfhU; Path=/; HttpOnly; Secure; SameSite=None
mtr: us-east-1
etag: W/"6e9-utfYM9hF0DKj1sFqEfGIX70XKak"
x-envoy-upstream-service-time: 26
Access-Control-Expose-Headers: x-request-time, x-envoy-upstream-service-time, x-request-id, server-timing
X-Content-Type-Options: nosniff
X-Request-Time: 0.028;
content-security-policy: frame-ancestors 'self' *.actionaly.com *.aiwyn.ai *.alkami.com *.ameyo.com *.annata.net *.arht.tech *.atlassian.com *.atlassian.net *.brighter.ai *.centripetal.ai *.classtime.com *.clearwaveinc.com *.contentsquare.com *.crm.ondemand.com *.darktrace.com *.doubleoctopus.com *.dynamics.com *.enable.com *.enable.us *.engagingnetworks.net *.flyr.com *.force.com *.forduniversity.com *.gainsight.com *.h-dnet.com *.highspot.com *.hubspot.com *.hubspoteditor.com *.ipresent.com *.ipresentweb.com *.justappraised.com *.live.com *.mediafly.com *.mindtickle.app *.mindtickle.com *.mismo.team *.myfreshworks.com *.numero.ai *.okta.com *.papirfly.com *.pascivite.com *.peoplegrove.com *.propelleraero.com *.reverselogix.com *.rheinberg-pools.de *.rready.com *.salesforce-communities.com *.salesforce-experience.com *.salesforce.com *.schoolmint.com *.schoolstatus.com *.seismic.com *.site.com *.splunkcoach.com *.stripe.partners *.supremeopti.com *.talview.com *.techsee.me *.tenable.com *.theiquest.com *.thermofisher.one *.tracegains.com *.trexgroup.com *.trucesoftware.com *.trustnetinc.com *.twilio.com *.uniphorecloud.com *.unraveldata.com *.upshop.com *.voucherify.io *.wisesystems.com *.zendesk.com *.zoom.us digdeeper.sysdig.com *.showpad.biz *.office.com *.office365.com partnertraining.bluebeam.com *.goto.com enablement.cribl.io *.bitsight.com *.outreach.io *.develop.lightning.force.com *.lightning.force.com *.redhat.com *.everfox.com *.keyfactor.com *.bottomline.com *.keymarkinc.com *.browserstack.com *.prescryptive.com *.lincoln.com *.haasalert.com *.lincolnforyou.com *.firstsource.com *.druva.com *.lookbookhq.com *.cisco.com *.oneidentity.com *.whatfix.com whatfix.com *.climateimpact.com *.graphisoft.com *.huntress.com *.expel.com *.sayari.com *.hellopebl.com *.saludamedical.com *.checkr.com
X-Cache: Miss from cloudfront
Via: 1.1 7ca1f888e55cc20dcbd40691cd7e4e84.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: FRA60-P13
X-Amz-Cf-Id: -VpqVPoM3sJgh1bQ9-_8f63c0iEG3pkqGBOZJ_MX37ok_2hkvWccvw==
Strict-Transport-Security: max-age=31536000; includeSubDomains
Server-Timing: cdn-upstream-layer;desc="Origin Shield",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=32,cdn-cache-miss,cdn-pop;desc="FRA60-P13",cdn-rid;desc="-VpqVPoM3sJgh1bQ9-_8f63c0iEG3pkqGBOZJ_MX37ok_2hkvWccvw==",cdn-downstream-fbl;dur=326


<!DOCTYPE html>
<html xmlns="http://www.w3.org/1999/xhtml" dir="ltr" lang="en-US">

<head>
  <script type="text/javascript" nonce="5e0d52a8">
    var sameSiteNoneCompatible = "true" === "true";
    var query = '';
    var redirectUrl = '/' ;
    if (redirectUrl) {
          query = `?loginredirecturi=${encodeURIComponent(redirectUrl)}`
    }

    function getCookieValue (key, value, expires) {
      /* Note:
        We cannot set 'httpOnly' attribute in this cookie due to below two reasons:
        1. 'httpOnly' cookie can only be set by the server and not by any client side code.
        https://stackoverflow.com/questions/14691654/set-a-cookie-to-httponly-via-javascript
        2. We do not have access to location.hash in app-gatekeeper
        https://stackoverflow.com/questions/17744003/get-url-after-in-express-js-middleware-request/43280710
       */
      var cookie = key + "=" + value + "; expires=" + expires + '; path=/; Secure';
      if(sameSiteNoneCompatible) {
        cookie += '; SameSite=None'
      }
      return cookie;
    }

    function setCookie (key, value, days) {
        var date = new Date();
        days = days || 1;
        // Get unix milliseconds at current time plus number of days
        date.setTime(+ date + (days * 86400000)); //24 * 60 * 60 * 1000
        window.document.cookie = getCookieValue(key, value, date.toGMTString());
        return value;
    }

    var delete_cookie = function(key) {
        document.cookie = getCookieValue(key, '', 'Thu, 01 Jan 1970 00:00:01 GMT');
    };

    if (window.location.hash) {
      setCookie('hashRedirectURL', window.location.hash, 1);
    } else {
      delete_cookie('hashRedirectURL');
    }
    window.location.href = '/login' + query;
  </script>
</head>

</html>

HTTP/1.1 200 OK
Server: CloudFront
Content-Type: text/html; charset=utf-8
Content-Length: 1769
Connection: close
Vary: Accept-Encoding
Date: Mon, 22 Dec 2025 07:20:26 GMT
x-request-id: CUSTOMER-AGK-d063-4556-b661-497ba3c5ce0f-t1766388026603
set-cookie: _csrf-prod-us=%2FDo7U3oVkd4FcOY6xvxBRfhbvdLpnamsL6VAMdp4CY5IswulFfUW3wwMEjcbRFdiVndGDSprhAXCmdnV4N8cFH3XjhK4BrC%2Bu1XpTMI4PosCEemwu3a3NHEXot8pOUWdgPJQqg%3D%3D; Max-Age=2592000; Domain=cu.cepheid.com; Path=/; Expires=Wed, 21 Jan 2026 07:20:26 GMT; HttpOnly; Secure; SameSite=Lax
set-cookie: mts-us-east-1=s%3AnLYZAFn7HB2T3J1UgTViWnlIYxCxo9D1.A3qF%2FSvF1zbdR5BV9xY3H5z19NLfr9iUyrk0ntXR2rU; Path=/; HttpOnly; Secure; SameSite=None
mtr: us-east-1
etag: W/"6e9-utfYM9hF0DKj1sFqEfGIX70XKak"
x-envoy-upstream-service-time: 27
Access-Control-Expose-Headers: x-request-time, x-envoy-upstream-service-time, x-request-id, server-timing
X-Content-Type-Options: nosniff
X-Request-Time: 0.028;
content-security-policy: frame-ancestors 'self' *.actionaly.com *.aiwyn.ai *.alkami.com *.ameyo.com *.annata.net *.arht.tech *.atlassian.com *.atlassian.net *.brighter.ai *.centripetal.ai *.classtime.com *.clearwaveinc.com *.contentsquare.com *.crm.ondemand.com *.darktrace.com *.doubleoctopus.com *.dynamics.com *.enable.com *.enable.us *.engagingnetworks.net *.flyr.com *.force.com *.forduniversity.com *.gainsight.com *.h-dnet.com *.highspot.com *.hubspot.com *.hubspoteditor.com *.ipresent.com *.ipresentweb.com *.justappraised.com *.live.com *.mediafly.com *.mindtickle.app *.mindtickle.com *.mismo.team *.myfreshworks.com *.numero.ai *.okta.com *.papirfly.com *.pascivite.com *.peoplegrove.com *.propelleraero.com *.reverselogix.com *.rheinberg-pools.de *.rready.com *.salesforce-communities.com *.salesforce-experience.com *.salesforce.com *.schoolmint.com *.schoolstatus.com *.seismic.com *.site.com *.splunkcoach.com *.stripe.partners *.supremeopti.com *.talview.com *.techsee.me *.tenable.com *.theiquest.com *.thermofisher.one *.tracegains.com *.trexgroup.com *.trucesoftware.com *.trustnetinc.com *.twilio.com *.uniphorecloud.com *.unraveldata.com *.upshop.com *.voucherify.io *.wisesystems.com *.zendesk.com *.zoom.us digdeeper.sysdig.com *.showpad.biz *.office.com *.office365.com partnertraining.bluebeam.com *.goto.com enablement.cribl.io *.bitsight.com *.outreach.io *.develop.lightning.force.com *.lightning.force.com *.redhat.com *.everfox.com *.keyfactor.com *.bottomline.com *.keymarkinc.com *.browserstack.com *.prescryptive.com *.lincoln.com *.haasalert.com *.lincolnforyou.com *.firstsource.com *.druva.com *.lookbookhq.com *.cisco.com *.oneidentity.com *.whatfix.com whatfix.com *.climateimpact.com *.graphisoft.com *.huntress.com *.expel.com *.sayari.com *.hellopebl.com *.saludamedical.com *.checkr.com
X-Cache: Miss from cloudfront
Via: 1.1 581599a51772a76c2489c9d094b70226.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: FRA60-P13
X-Amz-Cf-Id: rARKz5HBBFp3mQMVsX7fCXMngi-nKek5k1kNxX0-PHtde4DSIZ8QRQ==
Strict-Transport-Security: max-age=31536000; includeSubDomains
Server-Timing: cdn-upstream-layer;desc="Origin Shield",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=6,cdn-upstream-fbl;dur=40,cdn-cache-miss,cdn-pop;desc="FRA60-P13",cdn-rid;desc="rARKz5HBBFp3mQMVsX7fCXMngi-nKek5k1kNxX0-PHtde4DSIZ8QRQ==",cdn-downstream-fbl;dur=149


<!DOCTYPE html>
<html xmlns="http://www.w3.org/1999/xhtml" dir="ltr" lang="en-US">

<head>
  <script type="text/javascript" nonce="5e0d52a8">
    var sameSiteNoneCompatible = "true" === "true";
    var query = '';
    var redirectUrl = '/' ;
    if (redirectUrl) {
          query = `?loginredirecturi=${encodeURIComponent(redirectUrl)}`
    }

    function getCookieValue (key, value, expires) {
      /* Note:
        We cannot set 'httpOnly' attribute in this cookie due to below two reasons:
        1. 'httpOnly' cookie can only be set by the server and not by any client side code.
        https://stackoverflow.com/questions/14691654/set-a-cookie-to-httponly-via-javascript
        2. We do not have access to location.hash in app-gatekeeper
        https://stackoverflow.com/questions/17744003/get-url-after-in-express-js-middleware-request/43280710
       */
      var cookie = key + "=" + value + "; expires=" + expires + '; path=/; Secure';
      if(sameSiteNoneCompatible) {
        cookie += '; SameSite=None'
      }
      return cookie;
    }

    function setCookie (key, value, days) {
        var date = new Date();
        days = days || 1;
        // Get unix milliseconds at current time plus number of days
        date.setTime(+ date + (days * 86400000)); //24 * 60 * 60 * 1000
        window.document.cookie = getCookieValue(key, value, date.toGMTString());
        return value;
    }

    var delete_cookie = function(key) {
        document.cookie = getCookieValue(key, '', 'Thu, 01 Jan 1970 00:00:01 GMT');
    };

    if (window.location.hash) {
      setCookie('hashRedirectURL', window.location.hash, 1);
    } else {
      delete_cookie('hashRedirectURL');
    }
    window.location.href = '/login' + query;
  </script>
</head>

</html>

HTTP/1.1 200 OK
Server: CloudFront
Content-Type: text/html; charset=utf-8
Content-Length: 1769
Connection: close
Vary: Accept-Encoding
Date: Mon, 22 Dec 2025 07:20:26 GMT
x-request-id: CUSTOMER-AGK-87fd-4b73-baeb-470507fbae47-t1766388026180
set-cookie: _csrf-prod-us=gKuKSQxqbVXWK4gA%2FSgHCQMU%2B8XdmeBqFcpNJbX8v0PiCbEvfO8ALBnv24hiH8o3qHWNDAFtQp6OCB8h67b77ChcLl3Wma37gOc5Hgu2nEYoDvAIlwOyZXb89F0GBDmT2Rsr%2Bw%3D%3D; Max-Age=2592000; Domain=cu.cepheid.com; Path=/; Expires=Wed, 21 Jan 2026 07:20:26 GMT; HttpOnly; Secure; SameSite=Lax
set-cookie: mts-us-east-1=s%3AdAvXfBa2sRvY6gJWTOpoTp5DJQADpBK6.pfe%2F5kdNbl8ExpvIk6NoA160%2FXF6Y6iObzHp4at6c3w; Path=/; HttpOnly; Secure; SameSite=None
mtr: us-east-1
etag: W/"6e9-utfYM9hF0DKj1sFqEfGIX70XKak"
x-envoy-upstream-service-time: 45
Access-Control-Expose-Headers: x-request-time, x-envoy-upstream-service-time, x-request-id, server-timing
X-Content-Type-Options: nosniff
X-Request-Time: 0.047;
content-security-policy: frame-ancestors 'self' *.actionaly.com *.aiwyn.ai *.alkami.com *.ameyo.com *.annata.net *.arht.tech *.atlassian.com *.atlassian.net *.brighter.ai *.centripetal.ai *.classtime.com *.clearwaveinc.com *.contentsquare.com *.crm.ondemand.com *.darktrace.com *.doubleoctopus.com *.dynamics.com *.enable.com *.enable.us *.engagingnetworks.net *.flyr.com *.force.com *.forduniversity.com *.gainsight.com *.h-dnet.com *.highspot.com *.hubspot.com *.hubspoteditor.com *.ipresent.com *.ipresentweb.com *.justappraised.com *.live.com *.mediafly.com *.mindtickle.app *.mindtickle.com *.mismo.team *.myfreshworks.com *.numero.ai *.okta.com *.papirfly.com *.pascivite.com *.peoplegrove.com *.propelleraero.com *.reverselogix.com *.rheinberg-pools.de *.rready.com *.salesforce-communities.com *.salesforce-experience.com *.salesforce.com *.schoolmint.com *.schoolstatus.com *.seismic.com *.site.com *.splunkcoach.com *.stripe.partners *.supremeopti.com *.talview.com *.techsee.me *.tenable.com *.theiquest.com *.thermofisher.one *.tracegains.com *.trexgroup.com *.trucesoftware.com *.trustnetinc.com *.twilio.com *.uniphorecloud.com *.unraveldata.com *.upshop.com *.voucherify.io *.wisesystems.com *.zendesk.com *.zoom.us digdeeper.sysdig.com *.showpad.biz *.office.com *.office365.com partnertraining.bluebeam.com *.goto.com enablement.cribl.io *.bitsight.com *.outreach.io *.develop.lightning.force.com *.lightning.force.com *.redhat.com *.everfox.com *.keyfactor.com *.bottomline.com *.keymarkinc.com *.browserstack.com *.prescryptive.com *.lincoln.com *.haasalert.com *.lincolnforyou.com *.firstsource.com *.druva.com *.lookbookhq.com *.cisco.com *.oneidentity.com *.whatfix.com whatfix.com *.climateimpact.com *.graphisoft.com *.huntress.com *.expel.com *.sayari.com *.hellopebl.com *.saludamedical.com *.checkr.com
X-Cache: Miss from cloudfront
Via: 1.1 d07394c1abd1aadfca4b7709ba1de6a8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: FRA60-P13
X-Amz-Cf-Id: pMsN-h1N-UzpN7nlSfw6YF0DA5r04F-78uuab_Ouyhp3v9-b0Z-zTA==
Strict-Transport-Security: max-age=31536000; includeSubDomains
Server-Timing: cdn-upstream-layer;desc="Origin Shield",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=52,cdn-cache-miss,cdn-pop;desc="FRA60-P13",cdn-rid;desc="pMsN-h1N-UzpN7nlSfw6YF0DA5r04F-78uuab_Ouyhp3v9-b0Z-zTA==",cdn-downstream-fbl;dur=340


<!DOCTYPE html>
<html xmlns="http://www.w3.org/1999/xhtml" dir="ltr" lang="en-US">

<head>
  <script type="text/javascript" nonce="5e0d52a8">
    var sameSiteNoneCompatible = "true" === "true";
    var query = '';
    var redirectUrl = '/' ;
    if (redirectUrl) {
          query = `?loginredirecturi=${encodeURIComponent(redirectUrl)}`
    }

    function getCookieValue (key, value, expires) {
      /* Note:
        We cannot set 'httpOnly' attribute in this cookie due to below two reasons:
        1. 'httpOnly' cookie can only be set by the server and not by any client side code.
        https://stackoverflow.com/questions/14691654/set-a-cookie-to-httponly-via-javascript
        2. We do not have access to location.hash in app-gatekeeper
        https://stackoverflow.com/questions/17744003/get-url-after-in-express-js-middleware-request/43280710
       */
      var cookie = key + "=" + value + "; expires=" + expires + '; path=/; Secure';
      if(sameSiteNoneCompatible) {
        cookie += '; SameSite=None'
      }
      return cookie;
    }

    function setCookie (key, value, days) {
        var date = new Date();
        days = days || 1;
        // Get unix milliseconds at current time plus number of days
        date.setTime(+ date + (days * 86400000)); //24 * 60 * 60 * 1000
        window.document.cookie = getCookieValue(key, value, date.toGMTString());
        return value;
    }

    var delete_cookie = function(key) {
        document.cookie = getCookieValue(key, '', 'Thu, 01 Jan 1970 00:00:01 GMT');
    };

    if (window.location.hash) {
      setCookie('hashRedirectURL', window.location.hash, 1);
    } else {
      delete_cookie('hashRedirectURL');
    }
    window.location.href = '/login' + query;
  </script>
</head>

</html>

HTTP/1.1 301 Moved Permanently
Server: CloudFront
Date: Mon, 22 Dec 2025 07:20:26 GMT
Content-Type: text/html
Content-Length: 167
Connection: close
Location: https://cu.cepheid.com/
X-Cache: Redirect from cloudfront
Via: 1.1 3e7af1ef389db8ab4a319bd943f95544.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: FRA60-P13
X-Amz-Cf-Id: Y9x4qK6gQHo9csjvf3DR9RHCKjkVpLRoxL6Elosbm0ZjsiFHULo5aQ==
X-Content-Type-Options: nosniff

Page title: 301 Moved Permanently

<html>
<head><title>301 Moved Permanently</title></head>
<body>
<center><h1>301 Moved Permanently</h1></center>
<hr><center>CloudFront</center>
</body>
</html>

HTTP/1.1 200 OK
Server: CloudFront
Content-Type: text/html; charset=utf-8
Content-Length: 1769
Connection: close
Vary: Accept-Encoding
Date: Mon, 22 Dec 2025 07:20:27 GMT
x-request-id: CUSTOMER-AGK-df2b-472b-ad8e-08b340593a5f-t1766388027083
set-cookie: _csrf-prod-us=NbU54a4gbTXyypVGyPBf9pufdovVkyqBiiaukVqOSKRQIA7E6fBvSDm6dvk3DsOknlmwSdQOk1nV8IHkIY9SRTy4HWVrJk9tFKB3Twu6SbWQhu0kykN3MfV623gFFXByX74czA%3D%3D; Max-Age=2592000; Domain=cu.cepheid.com; Path=/; Expires=Wed, 21 Jan 2026 07:20:27 GMT; HttpOnly; Secure; SameSite=Lax
set-cookie: mts-us-east-1=s%3AhALjexPxzgvt81oeACdaQzJ8DDvmT55d.1bejUypla7N45FIX2rYmhWSLlJAnALX%2FpbDveRC8hrk; Path=/; HttpOnly; Secure; SameSite=None
mtr: us-east-1
etag: W/"6e9-utfYM9hF0DKj1sFqEfGIX70XKak"
x-envoy-upstream-service-time: 45
Access-Control-Expose-Headers: x-request-time, x-envoy-upstream-service-time, x-request-id, server-timing
X-Content-Type-Options: nosniff
X-Request-Time: 0.047;
content-security-policy: frame-ancestors 'self' *.actionaly.com *.aiwyn.ai *.alkami.com *.ameyo.com *.annata.net *.arht.tech *.atlassian.com *.atlassian.net *.brighter.ai *.centripetal.ai *.classtime.com *.clearwaveinc.com *.contentsquare.com *.crm.ondemand.com *.darktrace.com *.doubleoctopus.com *.dynamics.com *.enable.com *.enable.us *.engagingnetworks.net *.flyr.com *.force.com *.forduniversity.com *.gainsight.com *.h-dnet.com *.highspot.com *.hubspot.com *.hubspoteditor.com *.ipresent.com *.ipresentweb.com *.justappraised.com *.live.com *.mediafly.com *.mindtickle.app *.mindtickle.com *.mismo.team *.myfreshworks.com *.numero.ai *.okta.com *.papirfly.com *.pascivite.com *.peoplegrove.com *.propelleraero.com *.reverselogix.com *.rheinberg-pools.de *.rready.com *.salesforce-communities.com *.salesforce-experience.com *.salesforce.com *.schoolmint.com *.schoolstatus.com *.seismic.com *.site.com *.splunkcoach.com *.stripe.partners *.supremeopti.com *.talview.com *.techsee.me *.tenable.com *.theiquest.com *.thermofisher.one *.tracegains.com *.trexgroup.com *.trucesoftware.com *.trustnetinc.com *.twilio.com *.uniphorecloud.com *.unraveldata.com *.upshop.com *.voucherify.io *.wisesystems.com *.zendesk.com *.zoom.us digdeeper.sysdig.com *.showpad.biz *.office.com *.office365.com partnertraining.bluebeam.com *.goto.com enablement.cribl.io *.bitsight.com *.outreach.io *.develop.lightning.force.com *.lightning.force.com *.redhat.com *.everfox.com *.keyfactor.com *.bottomline.com *.keymarkinc.com *.browserstack.com *.prescryptive.com *.lincoln.com *.haasalert.com *.lincolnforyou.com *.firstsource.com *.druva.com *.lookbookhq.com *.cisco.com *.oneidentity.com *.whatfix.com whatfix.com *.climateimpact.com *.graphisoft.com *.huntress.com *.expel.com *.sayari.com *.hellopebl.com *.saludamedical.com *.checkr.com
X-Cache: Miss from cloudfront
Via: 1.1 8b6b9c8098dac83ebe6cded46eac0192.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: FRA60-P13
X-Amz-Cf-Id: p4TwtCfFxIMvn1-tDqQ4_sUVwH8etYUdlyQIXL6OcBX-YyfulKK3gw==
Strict-Transport-Security: max-age=31536000; includeSubDomains
Server-Timing: cdn-upstream-layer;desc="Origin Shield",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=5,cdn-upstream-fbl;dur=56,cdn-cache-miss,cdn-pop;desc="FRA60-P13",cdn-rid;desc="p4TwtCfFxIMvn1-tDqQ4_sUVwH8etYUdlyQIXL6OcBX-YyfulKK3gw==",cdn-downstream-fbl;dur=165


<!DOCTYPE html>
<html xmlns="http://www.w3.org/1999/xhtml" dir="ltr" lang="en-US">

<head>
  <script type="text/javascript" nonce="5e0d52a8">
    var sameSiteNoneCompatible = "true" === "true";
    var query = '';
    var redirectUrl = '/' ;
    if (redirectUrl) {
          query = `?loginredirecturi=${encodeURIComponent(redirectUrl)}`
    }

    function getCookieValue (key, value, expires) {
      /* Note:
        We cannot set 'httpOnly' attribute in this cookie due to below two reasons:
        1. 'httpOnly' cookie can only be set by the server and not by any client side code.
        https://stackoverflow.com/questions/14691654/set-a-cookie-to-httponly-via-javascript
        2. We do not have access to location.hash in app-gatekeeper
        https://stackoverflow.com/questions/17744003/get-url-after-in-express-js-middleware-request/43280710
       */
      var cookie = key + "=" + value + "; expires=" + expires + '; path=/; Secure';
      if(sameSiteNoneCompatible) {
        cookie += '; SameSite=None'
      }
      return cookie;
    }

    function setCookie (key, value, days) {
        var date = new Date();
        days = days || 1;
        // Get unix milliseconds at current time plus number of days
        date.setTime(+ date + (days * 86400000)); //24 * 60 * 60 * 1000
        window.document.cookie = getCookieValue(key, value, date.toGMTString());
        return value;
    }

    var delete_cookie = function(key) {
        document.cookie = getCookieValue(key, '', 'Thu, 01 Jan 1970 00:00:01 GMT');
    };

    if (window.location.hash) {
      setCookie('hashRedirectURL', window.location.hash, 1);
    } else {
      delete_cookie('hashRedirectURL');
    }
    window.location.href = '/login' + query;
  </script>
</head>

</html>

HTTP/1.1 200 OK
Server: CloudFront
Content-Type: text/html; charset=utf-8
Content-Length: 1769
Connection: close
Vary: Accept-Encoding
Date: Mon, 22 Dec 2025 07:20:26 GMT
x-request-id: CUSTOMER-AGK-0e52-4e1e-9263-acecfe87cd88-t1766388026721
set-cookie: _csrf-prod-us=dQu59d3z1XZez%2Bh%2BtMA3gblhDpZ3xJHZwbZbHTsEa6X8vwpAgX8aw4BRUTRgVJBnwztK0c7StEwMDjVsLiUi2wv4rvS%2Bsn%2B5bqippsTpMgxEkhY2drf0I5JCeImj%2Fb%2BoB8iOaw%3D%3D; Max-Age=2592000; Domain=cu.cepheid.com; Path=/; Expires=Wed, 21 Jan 2026 07:20:26 GMT; HttpOnly; Secure; SameSite=Lax
set-cookie: mts-us-east-1=s%3AqeyCmQdmknNZxnkrDqG1JTY8P8Sy0nOr.ANXnBnMBEBe3wKnCw9DeV10r%2F7PZJFNiAzZ7SAOeqHo; Path=/; HttpOnly; Secure; SameSite=None
mtr: us-east-1
etag: W/"6e9-utfYM9hF0DKj1sFqEfGIX70XKak"
x-envoy-upstream-service-time: 20
Access-Control-Expose-Headers: x-request-time, x-envoy-upstream-service-time, x-request-id, server-timing
X-Content-Type-Options: nosniff
X-Request-Time: 0.022;
content-security-policy: frame-ancestors 'self' *.actionaly.com *.aiwyn.ai *.alkami.com *.ameyo.com *.annata.net *.arht.tech *.atlassian.com *.atlassian.net *.brighter.ai *.centripetal.ai *.classtime.com *.clearwaveinc.com *.contentsquare.com *.crm.ondemand.com *.darktrace.com *.doubleoctopus.com *.dynamics.com *.enable.com *.enable.us *.engagingnetworks.net *.flyr.com *.force.com *.forduniversity.com *.gainsight.com *.h-dnet.com *.highspot.com *.hubspot.com *.hubspoteditor.com *.ipresent.com *.ipresentweb.com *.justappraised.com *.live.com *.mediafly.com *.mindtickle.app *.mindtickle.com *.mismo.team *.myfreshworks.com *.numero.ai *.okta.com *.papirfly.com *.pascivite.com *.peoplegrove.com *.propelleraero.com *.reverselogix.com *.rheinberg-pools.de *.rready.com *.salesforce-communities.com *.salesforce-experience.com *.salesforce.com *.schoolmint.com *.schoolstatus.com *.seismic.com *.site.com *.splunkcoach.com *.stripe.partners *.supremeopti.com *.talview.com *.techsee.me *.tenable.com *.theiquest.com *.thermofisher.one *.tracegains.com *.trexgroup.com *.trucesoftware.com *.trustnetinc.com *.twilio.com *.uniphorecloud.com *.unraveldata.com *.upshop.com *.voucherify.io *.wisesystems.com *.zendesk.com *.zoom.us digdeeper.sysdig.com *.showpad.biz *.office.com *.office365.com partnertraining.bluebeam.com *.goto.com enablement.cribl.io *.bitsight.com *.outreach.io *.develop.lightning.force.com *.lightning.force.com *.redhat.com *.everfox.com *.keyfactor.com *.bottomline.com *.keymarkinc.com *.browserstack.com *.prescryptive.com *.lincoln.com *.haasalert.com *.lincolnforyou.com *.firstsource.com *.druva.com *.lookbookhq.com *.cisco.com *.oneidentity.com *.whatfix.com whatfix.com *.climateimpact.com *.graphisoft.com *.huntress.com *.expel.com *.sayari.com *.hellopebl.com *.saludamedical.com *.checkr.com
X-Cache: Miss from cloudfront
Via: 1.1 387be0cf162c8cb6592090f9496a1e92.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: FRA60-P13
X-Amz-Cf-Id: VH9trrSHxzYNziz8pMAva3x8RjRsNd9dcW0NKt3NEljNdJHvbiJtYQ==
Strict-Transport-Security: max-age=31536000; includeSubDomains
Server-Timing: cdn-upstream-layer;desc="Origin Shield",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=3,cdn-upstream-fbl;dur=29,cdn-cache-miss,cdn-pop;desc="FRA60-P13",cdn-rid;desc="VH9trrSHxzYNziz8pMAva3x8RjRsNd9dcW0NKt3NEljNdJHvbiJtYQ==",cdn-downstream-fbl;dur=135


<!DOCTYPE html>
<html xmlns="http://www.w3.org/1999/xhtml" dir="ltr" lang="en-US">

<head>
  <script type="text/javascript" nonce="5e0d52a8">
    var sameSiteNoneCompatible = "true" === "true";
    var query = '';
    var redirectUrl = '/' ;
    if (redirectUrl) {
          query = `?loginredirecturi=${encodeURIComponent(redirectUrl)}`
    }

    function getCookieValue (key, value, expires) {
      /* Note:
        We cannot set 'httpOnly' attribute in this cookie due to below two reasons:
        1. 'httpOnly' cookie can only be set by the server and not by any client side code.
        https://stackoverflow.com/questions/14691654/set-a-cookie-to-httponly-via-javascript
        2. We do not have access to location.hash in app-gatekeeper
        https://stackoverflow.com/questions/17744003/get-url-after-in-express-js-middleware-request/43280710
       */
      var cookie = key + "=" + value + "; expires=" + expires + '; path=/; Secure';
      if(sameSiteNoneCompatible) {
        cookie += '; SameSite=None'
      }
      return cookie;
    }

    function setCookie (key, value, days) {
        var date = new Date();
        days = days || 1;
        // Get unix milliseconds at current time plus number of days
        date.setTime(+ date + (days * 86400000)); //24 * 60 * 60 * 1000
        window.document.cookie = getCookieValue(key, value, date.toGMTString());
        return value;
    }

    var delete_cookie = function(key) {
        document.cookie = getCookieValue(key, '', 'Thu, 01 Jan 1970 00:00:01 GMT');
    };

    if (window.location.hash) {
      setCookie('hashRedirectURL', window.location.hash, 1);
    } else {
      delete_cookie('hashRedirectURL');
    }
    window.location.href = '/login' + query;
  </script>
</head>

</html>

HTTP/1.1 301 Moved Permanently
Server: CloudFront
Date: Mon, 22 Dec 2025 07:20:25 GMT
Content-Type: text/html
Content-Length: 167
Connection: close
Location: https://cu.cepheid.com/
X-Cache: Redirect from cloudfront
Via: 1.1 f126ea1ed848e1f1d4c478d1f814e2c2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: FRA60-P13
X-Amz-Cf-Id: B3WfYu5nGVaMPHQKlDS-c0tm5IlThH41r02Qbj36Ls8LQI0aEDAlvg==
X-Content-Type-Options: nosniff

Page title: 301 Moved Permanently

<html>
<head><title>301 Moved Permanently</title></head>
<body>
<center><h1>301 Moved Permanently</h1></center>
<hr><center>CloudFront</center>
</body>
</html>

HTTP/1.1 200 OK
Server: CloudFront
Content-Type: text/html; charset=utf-8
Content-Length: 1769
Connection: close
Vary: Accept-Encoding
Date: Mon, 22 Dec 2025 07:20:26 GMT
x-request-id: CUSTOMER-AGK-1302-49e2-805f-476074a33897-t1766388026524
set-cookie: _csrf-prod-us=niYydWfMqOt9s8K0bAdTEydr08CoSHi343DDXmjatHVwW9T6f8QjoniqmpttyWNSBMLVopHH1F3fPnm%2BkPqSIFJTs14F3DGbn1rQ9CErANZ1wb6m97S2GzJM3jjCVnxPiR2BAQ%3D%3D; Max-Age=2592000; Domain=cu.cepheid.com; Path=/; Expires=Wed, 21 Jan 2026 07:20:26 GMT; HttpOnly; Secure; SameSite=Lax
set-cookie: mts-us-east-1=s%3AOMMLhm4Gc5Fi0DAEQKPoEAdUhE8GGozG.xZ3JpE7rRHbyy5oGJm4inzV8qDjVp%2B%2BuiLAvwd0Lal4; Path=/; HttpOnly; Secure; SameSite=None
mtr: us-east-1
etag: W/"6e9-utfYM9hF0DKj1sFqEfGIX70XKak"
x-envoy-upstream-service-time: 23
Access-Control-Expose-Headers: x-request-time, x-envoy-upstream-service-time, x-request-id, server-timing
X-Content-Type-Options: nosniff
X-Request-Time: 0.026;
content-security-policy: frame-ancestors 'self' *.actionaly.com *.aiwyn.ai *.alkami.com *.ameyo.com *.annata.net *.arht.tech *.atlassian.com *.atlassian.net *.brighter.ai *.centripetal.ai *.classtime.com *.clearwaveinc.com *.contentsquare.com *.crm.ondemand.com *.darktrace.com *.doubleoctopus.com *.dynamics.com *.enable.com *.enable.us *.engagingnetworks.net *.flyr.com *.force.com *.forduniversity.com *.gainsight.com *.h-dnet.com *.highspot.com *.hubspot.com *.hubspoteditor.com *.ipresent.com *.ipresentweb.com *.justappraised.com *.live.com *.mediafly.com *.mindtickle.app *.mindtickle.com *.mismo.team *.myfreshworks.com *.numero.ai *.okta.com *.papirfly.com *.pascivite.com *.peoplegrove.com *.propelleraero.com *.reverselogix.com *.rheinberg-pools.de *.rready.com *.salesforce-communities.com *.salesforce-experience.com *.salesforce.com *.schoolmint.com *.schoolstatus.com *.seismic.com *.site.com *.splunkcoach.com *.stripe.partners *.supremeopti.com *.talview.com *.techsee.me *.tenable.com *.theiquest.com *.thermofisher.one *.tracegains.com *.trexgroup.com *.trucesoftware.com *.trustnetinc.com *.twilio.com *.uniphorecloud.com *.unraveldata.com *.upshop.com *.voucherify.io *.wisesystems.com *.zendesk.com *.zoom.us digdeeper.sysdig.com *.showpad.biz *.office.com *.office365.com partnertraining.bluebeam.com *.goto.com enablement.cribl.io *.bitsight.com *.outreach.io *.develop.lightning.force.com *.lightning.force.com *.redhat.com *.everfox.com *.keyfactor.com *.bottomline.com *.keymarkinc.com *.browserstack.com *.prescryptive.com *.lincoln.com *.haasalert.com *.lincolnforyou.com *.firstsource.com *.druva.com *.lookbookhq.com *.cisco.com *.oneidentity.com *.whatfix.com whatfix.com *.climateimpact.com *.graphisoft.com *.huntress.com *.expel.com *.sayari.com *.hellopebl.com *.saludamedical.com *.checkr.com
X-Cache: Miss from cloudfront
Via: 1.1 421eaac04af7b6f186e858683cf405c4.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: FRA60-P13
X-Amz-Cf-Id: W44ndgahH0EL_itI-bXgiyXThO4c-IR16Uc_Y0aTUoqO914Yyy8snA==
Strict-Transport-Security: max-age=31536000; includeSubDomains
Server-Timing: cdn-upstream-layer;desc="Origin Shield",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=5,cdn-upstream-fbl;dur=35,cdn-cache-miss,cdn-pop;desc="FRA60-P13",cdn-rid;desc="W44ndgahH0EL_itI-bXgiyXThO4c-IR16Uc_Y0aTUoqO914Yyy8snA==",cdn-downstream-fbl;dur=141


<!DOCTYPE html>
<html xmlns="http://www.w3.org/1999/xhtml" dir="ltr" lang="en-US">

<head>
  <script type="text/javascript" nonce="5e0d52a8">
    var sameSiteNoneCompatible = "true" === "true";
    var query = '';
    var redirectUrl = '/' ;
    if (redirectUrl) {
          query = `?loginredirecturi=${encodeURIComponent(redirectUrl)}`
    }

    function getCookieValue (key, value, expires) {
      /* Note:
        We cannot set 'httpOnly' attribute in this cookie due to below two reasons:
        1. 'httpOnly' cookie can only be set by the server and not by any client side code.
        https://stackoverflow.com/questions/14691654/set-a-cookie-to-httponly-via-javascript
        2. We do not have access to location.hash in app-gatekeeper
        https://stackoverflow.com/questions/17744003/get-url-after-in-express-js-middleware-request/43280710
       */
      var cookie = key + "=" + value + "; expires=" + expires + '; path=/; Secure';
      if(sameSiteNoneCompatible) {
        cookie += '; SameSite=None'
      }
      return cookie;
    }

    function setCookie (key, value, days) {
        var date = new Date();
        days = days || 1;
        // Get unix milliseconds at current time plus number of days
        date.setTime(+ date + (days * 86400000)); //24 * 60 * 60 * 1000
        window.document.cookie = getCookieValue(key, value, date.toGMTString());
        return value;
    }

    var delete_cookie = function(key) {
        document.cookie = getCookieValue(key, '', 'Thu, 01 Jan 1970 00:00:01 GMT');
    };

    if (window.location.hash) {
      setCookie('hashRedirectURL', window.location.hash, 1);
    } else {
      delete_cookie('hashRedirectURL');
    }
    window.location.href = '/login' + query;
  </script>
</head>

</html>

HTTP/1.1 200 OK
Server: CloudFront
Content-Type: text/html; charset=utf-8
Content-Length: 1769
Connection: close
Vary: Accept-Encoding
Date: Mon, 22 Dec 2025 07:20:26 GMT
x-request-id: CUSTOMER-AGK-f5ec-47ef-bdcc-9d44bdf31f66-t1766388026550
set-cookie: _csrf-prod-us=grkFKelLnmRGS5Qo4pOdKYTQ879FtwJPzmEH1OssrJOrzbt84cw%2BEQMPoMAlYI1f7vXxD5K7OrWwbKdDSkvN3nYYh40bKj08Tw1hZQj0cJ3lij2c%2BBa8zyWAm%2FYk50%2BqUOnIOg%3D%3D; Max-Age=2592000; Domain=cu.cepheid.com; Path=/; Expires=Wed, 21 Jan 2026 07:20:26 GMT; HttpOnly; Secure; SameSite=Lax
set-cookie: mts-us-east-1=s%3AFSsKRZAv34Ii-ceEifm9y5Ot7vT94HRu.0gkCn15h0w0KwzAhoGb6FePuihKA06SNkfoqKrxeIU0; Path=/; HttpOnly; Secure; SameSite=None
mtr: us-east-1
etag: W/"6e9-utfYM9hF0DKj1sFqEfGIX70XKak"
x-envoy-upstream-service-time: 32
Access-Control-Expose-Headers: x-request-time, x-envoy-upstream-service-time, x-request-id, server-timing
X-Content-Type-Options: nosniff
X-Request-Time: 0.034;
content-security-policy: frame-ancestors 'self' *.actionaly.com *.aiwyn.ai *.alkami.com *.ameyo.com *.annata.net *.arht.tech *.atlassian.com *.atlassian.net *.brighter.ai *.centripetal.ai *.classtime.com *.clearwaveinc.com *.contentsquare.com *.crm.ondemand.com *.darktrace.com *.doubleoctopus.com *.dynamics.com *.enable.com *.enable.us *.engagingnetworks.net *.flyr.com *.force.com *.forduniversity.com *.gainsight.com *.h-dnet.com *.highspot.com *.hubspot.com *.hubspoteditor.com *.ipresent.com *.ipresentweb.com *.justappraised.com *.live.com *.mediafly.com *.mindtickle.app *.mindtickle.com *.mismo.team *.myfreshworks.com *.numero.ai *.okta.com *.papirfly.com *.pascivite.com *.peoplegrove.com *.propelleraero.com *.reverselogix.com *.rheinberg-pools.de *.rready.com *.salesforce-communities.com *.salesforce-experience.com *.salesforce.com *.schoolmint.com *.schoolstatus.com *.seismic.com *.site.com *.splunkcoach.com *.stripe.partners *.supremeopti.com *.talview.com *.techsee.me *.tenable.com *.theiquest.com *.thermofisher.one *.tracegains.com *.trexgroup.com *.trucesoftware.com *.trustnetinc.com *.twilio.com *.uniphorecloud.com *.unraveldata.com *.upshop.com *.voucherify.io *.wisesystems.com *.zendesk.com *.zoom.us digdeeper.sysdig.com *.showpad.biz *.office.com *.office365.com partnertraining.bluebeam.com *.goto.com enablement.cribl.io *.bitsight.com *.outreach.io *.develop.lightning.force.com *.lightning.force.com *.redhat.com *.everfox.com *.keyfactor.com *.bottomline.com *.keymarkinc.com *.browserstack.com *.prescryptive.com *.lincoln.com *.haasalert.com *.lincolnforyou.com *.firstsource.com *.druva.com *.lookbookhq.com *.cisco.com *.oneidentity.com *.whatfix.com whatfix.com *.climateimpact.com *.graphisoft.com *.huntress.com *.expel.com *.sayari.com *.hellopebl.com *.saludamedical.com *.checkr.com
X-Cache: Miss from cloudfront
Via: 1.1 2ae88352064bd2ee8746477a8b6fb1da.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: FRA60-P13
X-Amz-Cf-Id: MGOrSwKai4wdmRck5Z_U2fKId10fx6F8PZwdkIE6TzZW4B5Sv6x2gg==
Strict-Transport-Security: max-age=31536000; includeSubDomains
Server-Timing: cdn-upstream-layer;desc="Origin Shield",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=5,cdn-upstream-fbl;dur=43,cdn-cache-miss,cdn-pop;desc="FRA60-P13",cdn-rid;desc="MGOrSwKai4wdmRck5Z_U2fKId10fx6F8PZwdkIE6TzZW4B5Sv6x2gg==",cdn-downstream-fbl;dur=153


<!DOCTYPE html>
<html xmlns="http://www.w3.org/1999/xhtml" dir="ltr" lang="en-US">

<head>
  <script type="text/javascript" nonce="5e0d52a8">
    var sameSiteNoneCompatible = "true" === "true";
    var query = '';
    var redirectUrl = '/' ;
    if (redirectUrl) {
          query = `?loginredirecturi=${encodeURIComponent(redirectUrl)}`
    }

    function getCookieValue (key, value, expires) {
      /* Note:
        We cannot set 'httpOnly' attribute in this cookie due to below two reasons:
        1. 'httpOnly' cookie can only be set by the server and not by any client side code.
        https://stackoverflow.com/questions/14691654/set-a-cookie-to-httponly-via-javascript
        2. We do not have access to location.hash in app-gatekeeper
        https://stackoverflow.com/questions/17744003/get-url-after-in-express-js-middleware-request/43280710
       */
      var cookie = key + "=" + value + "; expires=" + expires + '; path=/; Secure';
      if(sameSiteNoneCompatible) {
        cookie += '; SameSite=None'
      }
      return cookie;
    }

    function setCookie (key, value, days) {
        var date = new Date();
        days = days || 1;
        // Get unix milliseconds at current time plus number of days
        date.setTime(+ date + (days * 86400000)); //24 * 60 * 60 * 1000
        window.document.cookie = getCookieValue(key, value, date.toGMTString());
        return value;
    }

    var delete_cookie = function(key) {
        document.cookie = getCookieValue(key, '', 'Thu, 01 Jan 1970 00:00:01 GMT');
    };

    if (window.location.hash) {
      setCookie('hashRedirectURL', window.location.hash, 1);
    } else {
      delete_cookie('hashRedirectURL');
    }
    window.location.href = '/login' + query;
  </script>
</head>

</html>

HTTP/1.1 200 OK
Server: CloudFront
Content-Type: text/html; charset=utf-8
Content-Length: 1769
Connection: close
Vary: Accept-Encoding
Date: Mon, 22 Dec 2025 07:20:25 GMT
x-request-id: CUSTOMER-AGK-ba2b-4ed7-bac8-20b9a01350be-t1766388025904
set-cookie: _csrf-prod-us=Kbp4Ejgbo991Yy8KtThivTOlYB2FGUgeF1%2FtkvbsgmBqxoFp1Y4nU0MOXbh%2F%2B2OoHiXfNav2FsBZ1T6zExDY3QVzavAVkHV1eXzDGMeWrJPwtVmTKGfWCQAcXCREm7bRooGM4g%3D%3D; Max-Age=2592000; Domain=cu.cepheid.com; Path=/; Expires=Wed, 21 Jan 2026 07:20:25 GMT; HttpOnly; Secure; SameSite=Lax
set-cookie: mts-us-east-1=s%3Aorqrd4nCTukBM2BoAgK4k-NFKbWKkuFA.XvAVvFxRiMGWa9rPobH6%2BB%2FIkhhgJanPrs7Ck4Kkuts; Path=/; HttpOnly; Secure; SameSite=None
mtr: us-east-1
etag: W/"6e9-utfYM9hF0DKj1sFqEfGIX70XKak"
x-envoy-upstream-service-time: 35
Access-Control-Expose-Headers: x-request-time, x-envoy-upstream-service-time, x-request-id, server-timing
X-Content-Type-Options: nosniff
X-Request-Time: 0.037;
content-security-policy: frame-ancestors 'self' *.actionaly.com *.aiwyn.ai *.alkami.com *.ameyo.com *.annata.net *.arht.tech *.atlassian.com *.atlassian.net *.brighter.ai *.centripetal.ai *.classtime.com *.clearwaveinc.com *.contentsquare.com *.crm.ondemand.com *.darktrace.com *.doubleoctopus.com *.dynamics.com *.enable.com *.enable.us *.engagingnetworks.net *.flyr.com *.force.com *.forduniversity.com *.gainsight.com *.h-dnet.com *.highspot.com *.hubspot.com *.hubspoteditor.com *.ipresent.com *.ipresentweb.com *.justappraised.com *.live.com *.mediafly.com *.mindtickle.app *.mindtickle.com *.mismo.team *.myfreshworks.com *.numero.ai *.okta.com *.papirfly.com *.pascivite.com *.peoplegrove.com *.propelleraero.com *.reverselogix.com *.rheinberg-pools.de *.rready.com *.salesforce-communities.com *.salesforce-experience.com *.salesforce.com *.schoolmint.com *.schoolstatus.com *.seismic.com *.site.com *.splunkcoach.com *.stripe.partners *.supremeopti.com *.talview.com *.techsee.me *.tenable.com *.theiquest.com *.thermofisher.one *.tracegains.com *.trexgroup.com *.trucesoftware.com *.trustnetinc.com *.twilio.com *.uniphorecloud.com *.unraveldata.com *.upshop.com *.voucherify.io *.wisesystems.com *.zendesk.com *.zoom.us digdeeper.sysdig.com *.showpad.biz *.office.com *.office365.com partnertraining.bluebeam.com *.goto.com enablement.cribl.io *.bitsight.com *.outreach.io *.develop.lightning.force.com *.lightning.force.com *.redhat.com *.everfox.com *.keyfactor.com *.bottomline.com *.keymarkinc.com *.browserstack.com *.prescryptive.com *.lincoln.com *.haasalert.com *.lincolnforyou.com *.firstsource.com *.druva.com *.lookbookhq.com *.cisco.com *.oneidentity.com *.whatfix.com whatfix.com *.climateimpact.com *.graphisoft.com *.huntress.com *.expel.com *.sayari.com *.hellopebl.com *.saludamedical.com *.checkr.com
X-Cache: Miss from cloudfront
Via: 1.1 7ca1f888e55cc20dcbd40691cd7e4e84.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: FRA60-P13
X-Amz-Cf-Id: UGM_k5R3pAUjwOWBt2GG200Zg37t_wI0GPYYWDi-o3t3senCSfmvug==
Strict-Transport-Security: max-age=31536000; includeSubDomains
Server-Timing: cdn-upstream-layer;desc="Origin Shield",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=5,cdn-upstream-fbl;dur=49,cdn-cache-miss,cdn-pop;desc="FRA60-P13",cdn-rid;desc="UGM_k5R3pAUjwOWBt2GG200Zg37t_wI0GPYYWDi-o3t3senCSfmvug==",cdn-downstream-fbl;dur=157


<!DOCTYPE html>
<html xmlns="http://www.w3.org/1999/xhtml" dir="ltr" lang="en-US">

<head>
  <script type="text/javascript" nonce="5e0d52a8">
    var sameSiteNoneCompatible = "true" === "true";
    var query = '';
    var redirectUrl = '/' ;
    if (redirectUrl) {
          query = `?loginredirecturi=${encodeURIComponent(redirectUrl)}`
    }

    function getCookieValue (key, value, expires) {
      /* Note:
        We cannot set 'httpOnly' attribute in this cookie due to below two reasons:
        1. 'httpOnly' cookie can only be set by the server and not by any client side code.
        https://stackoverflow.com/questions/14691654/set-a-cookie-to-httponly-via-javascript
        2. We do not have access to location.hash in app-gatekeeper
        https://stackoverflow.com/questions/17744003/get-url-after-in-express-js-middleware-request/43280710
       */
      var cookie = key + "=" + value + "; expires=" + expires + '; path=/; Secure';
      if(sameSiteNoneCompatible) {
        cookie += '; SameSite=None'
      }
      return cookie;
    }

    function setCookie (key, value, days) {
        var date = new Date();
        days = days || 1;
        // Get unix milliseconds at current time plus number of days
        date.setTime(+ date + (days * 86400000)); //24 * 60 * 60 * 1000
        window.document.cookie = getCookieValue(key, value, date.toGMTString());
        return value;
    }

    var delete_cookie = function(key) {
        document.cookie = getCookieValue(key, '', 'Thu, 01 Jan 1970 00:00:01 GMT');
    };

    if (window.location.hash) {
      setCookie('hashRedirectURL', window.location.hash, 1);
    } else {
      delete_cookie('hashRedirectURL');
    }
    window.location.href = '/login' + query;
  </script>
</head>

</html>

HTTP/1.1 301 Moved Permanently
Server: CloudFront
Date: Mon, 22 Dec 2025 07:20:25 GMT
Content-Type: text/html
Content-Length: 167
Connection: close
Location: https://cu.cepheid.com/
X-Cache: Redirect from cloudfront
Via: 1.1 c8441ee313b5204aa32e9bf5a370d536.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: FRA60-P13
X-Amz-Cf-Id: CGq0rj5eHHRcV3jjlFMGsld9XSwE1Yai5ySEBw9rcHuUECSck0hPgw==
X-Content-Type-Options: nosniff

Page title: 301 Moved Permanently

<html>
<head><title>301 Moved Permanently</title></head>
<body>
<center><h1>301 Moved Permanently</h1></center>
<hr><center>CloudFront</center>
</body>
</html>

HTTP/1.1 301 Moved Permanently
Server: CloudFront
Date: Mon, 22 Dec 2025 07:20:26 GMT
Content-Type: text/html
Content-Length: 167
Connection: close
Location: https://cu.cepheid.com/
X-Cache: Redirect from cloudfront
Via: 1.1 d07394c1abd1aadfca4b7709ba1de6a8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: FRA60-P13
X-Amz-Cf-Id: 5B1wCpRrSkIcMg2MmDcT_STBkNnL-7Kgmn3ZhCQfffNcWmeLB2mENg==
X-Content-Type-Options: nosniff

Page title: 301 Moved Permanently

<html>
<head><title>301 Moved Permanently</title></head>
<body>
<center><h1>301 Moved Permanently</h1></center>
<hr><center>CloudFront</center>
</body>
</html>

HTTP/1.1 301 Moved Permanently
Server: CloudFront
Date: Mon, 22 Dec 2025 07:20:26 GMT
Content-Type: text/html
Content-Length: 167
Connection: close
Location: https://cu.cepheid.com/
X-Cache: Redirect from cloudfront
Via: 1.1 b3c2d934335633b45a80b7ad63463cda.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: FRA60-P13
X-Amz-Cf-Id: qBG8h84QRqMyeU-UiGIRwmeVlvr4rrPt71JGLiH0oijlEuLuWmtw6Q==
X-Content-Type-Options: nosniff

Page title: 301 Moved Permanently

<html>
<head><title>301 Moved Permanently</title></head>
<body>
<center><h1>301 Moved Permanently</h1></center>
<hr><center>CloudFront</center>
</body>
</html>

HTTP/1.1 200 OK
Server: CloudFront
Content-Type: text/html; charset=utf-8
Content-Length: 1769
Connection: close
Vary: Accept-Encoding
Date: Mon, 22 Dec 2025 07:20:26 GMT
x-request-id: CUSTOMER-AGK-04e5-4236-bccf-879a7302af90-t1766388026583
set-cookie: _csrf-prod-us=PhdNCFGgdb5EX25SMQTR2Y3IoRUPm3Kg6gwCjnb6rvsPAjbF476%2FZjVHLyYBmAqb29fLAy6Us5%2BG%2FdRyiXhpFezL%2FLdJ8Jh8Ae5o5dvAPEicPNjZUGeU6bFtvddPPmUC5A7bjg%3D%3D; Max-Age=2592000; Domain=cu.cepheid.com; Path=/; Expires=Wed, 21 Jan 2026 07:20:26 GMT; HttpOnly; Secure; SameSite=Lax
set-cookie: mts-us-east-1=s%3AGf9ve1Vs9rO_7s2m2bxu9xJyxin0gNl2.BX%2B28g%2B87%2F5y9uGTj4A8uW6awMyO7kygRZT97YWedqg; Path=/; HttpOnly; Secure; SameSite=None
mtr: us-east-1
etag: W/"6e9-utfYM9hF0DKj1sFqEfGIX70XKak"
x-envoy-upstream-service-time: 24
Access-Control-Expose-Headers: x-request-time, x-envoy-upstream-service-time, x-request-id, server-timing
X-Content-Type-Options: nosniff
X-Request-Time: 0.026;
content-security-policy: frame-ancestors 'self' *.actionaly.com *.aiwyn.ai *.alkami.com *.ameyo.com *.annata.net *.arht.tech *.atlassian.com *.atlassian.net *.brighter.ai *.centripetal.ai *.classtime.com *.clearwaveinc.com *.contentsquare.com *.crm.ondemand.com *.darktrace.com *.doubleoctopus.com *.dynamics.com *.enable.com *.enable.us *.engagingnetworks.net *.flyr.com *.force.com *.forduniversity.com *.gainsight.com *.h-dnet.com *.highspot.com *.hubspot.com *.hubspoteditor.com *.ipresent.com *.ipresentweb.com *.justappraised.com *.live.com *.mediafly.com *.mindtickle.app *.mindtickle.com *.mismo.team *.myfreshworks.com *.numero.ai *.okta.com *.papirfly.com *.pascivite.com *.peoplegrove.com *.propelleraero.com *.reverselogix.com *.rheinberg-pools.de *.rready.com *.salesforce-communities.com *.salesforce-experience.com *.salesforce.com *.schoolmint.com *.schoolstatus.com *.seismic.com *.site.com *.splunkcoach.com *.stripe.partners *.supremeopti.com *.talview.com *.techsee.me *.tenable.com *.theiquest.com *.thermofisher.one *.tracegains.com *.trexgroup.com *.trucesoftware.com *.trustnetinc.com *.twilio.com *.uniphorecloud.com *.unraveldata.com *.upshop.com *.voucherify.io *.wisesystems.com *.zendesk.com *.zoom.us digdeeper.sysdig.com *.showpad.biz *.office.com *.office365.com partnertraining.bluebeam.com *.goto.com enablement.cribl.io *.bitsight.com *.outreach.io *.develop.lightning.force.com *.lightning.force.com *.redhat.com *.everfox.com *.keyfactor.com *.bottomline.com *.keymarkinc.com *.browserstack.com *.prescryptive.com *.lincoln.com *.haasalert.com *.lincolnforyou.com *.firstsource.com *.druva.com *.lookbookhq.com *.cisco.com *.oneidentity.com *.whatfix.com whatfix.com *.climateimpact.com *.graphisoft.com *.huntress.com *.expel.com *.sayari.com *.hellopebl.com *.saludamedical.com *.checkr.com
X-Cache: Miss from cloudfront
Via: 1.1 17cfc7795230164c1f6ea71024045250.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: FRA60-P13
X-Amz-Cf-Id: -ruxAIIDbVGGV39AYfoUqxwxzweu_1Nl1GjD1TOamhm9k4EHEKOg5w==
Strict-Transport-Security: max-age=31536000; includeSubDomains
Server-Timing: cdn-upstream-layer;desc="Origin Shield",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=4,cdn-upstream-fbl;dur=34,cdn-cache-miss,cdn-pop;desc="FRA60-P13",cdn-rid;desc="-ruxAIIDbVGGV39AYfoUqxwxzweu_1Nl1GjD1TOamhm9k4EHEKOg5w==",cdn-downstream-fbl;dur=140


<!DOCTYPE html>
<html xmlns="http://www.w3.org/1999/xhtml" dir="ltr" lang="en-US">

<head>
  <script type="text/javascript" nonce="5e0d52a8">
    var sameSiteNoneCompatible = "true" === "true";
    var query = '';
    var redirectUrl = '/' ;
    if (redirectUrl) {
          query = `?loginredirecturi=${encodeURIComponent(redirectUrl)}`
    }

    function getCookieValue (key, value, expires) {
      /* Note:
        We cannot set 'httpOnly' attribute in this cookie due to below two reasons:
        1. 'httpOnly' cookie can only be set by the server and not by any client side code.
        https://stackoverflow.com/questions/14691654/set-a-cookie-to-httponly-via-javascript
        2. We do not have access to location.hash in app-gatekeeper
        https://stackoverflow.com/questions/17744003/get-url-after-in-express-js-middleware-request/43280710
       */
      var cookie = key + "=" + value + "; expires=" + expires + '; path=/; Secure';
      if(sameSiteNoneCompatible) {
        cookie += '; SameSite=None'
      }
      return cookie;
    }

    function setCookie (key, value, days) {
        var date = new Date();
        days = days || 1;
        // Get unix milliseconds at current time plus number of days
        date.setTime(+ date + (days * 86400000)); //24 * 60 * 60 * 1000
        window.document.cookie = getCookieValue(key, value, date.toGMTString());
        return value;
    }

    var delete_cookie = function(key) {
        document.cookie = getCookieValue(key, '', 'Thu, 01 Jan 1970 00:00:01 GMT');
    };

    if (window.location.hash) {
      setCookie('hashRedirectURL', window.location.hash, 1);
    } else {
      delete_cookie('hashRedirectURL');
    }
    window.location.href = '/login' + query;
  </script>
</head>

</html>

HTTP/1.1 301 Moved Permanently
Server: CloudFront
Date: Mon, 22 Dec 2025 07:20:26 GMT
Content-Type: text/html
Content-Length: 167
Connection: close
Location: https://cu.cepheid.com/
X-Cache: Redirect from cloudfront
Via: 1.1 2ae88352064bd2ee8746477a8b6fb1da.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: FRA60-P13
X-Amz-Cf-Id: IIESpqVXhcIDUFS0DaC8s5ZzSDL9IWTH97hd-dsVPswep14qNjFPyA==
X-Content-Type-Options: nosniff

Page title: 301 Moved Permanently

<html>
<head><title>301 Moved Permanently</title></head>
<body>
<center><h1>301 Moved Permanently</h1></center>
<hr><center>CloudFront</center>
</body>
</html>

HTTP/1.1 301 Moved Permanently
Server: CloudFront
Date: Mon, 22 Dec 2025 07:20:26 GMT
Content-Type: text/html
Content-Length: 167
Connection: close
Location: https://cu.cepheid.com/
X-Cache: Redirect from cloudfront
Via: 1.1 f126ea1ed848e1f1d4c478d1f814e2c2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: FRA60-P13
X-Amz-Cf-Id: BCVRnUJj-rMt0nTKUZ2LzL5N451Ze2nGi6ZD4hMz5gWPhOAHbkHYdQ==
X-Content-Type-Options: nosniff

Page title: 301 Moved Permanently

<html>
<head><title>301 Moved Permanently</title></head>
<body>
<center><h1>301 Moved Permanently</h1></center>
<hr><center>CloudFront</center>
</body>
</html>

HTTP/1.1 301 Moved Permanently
Server: CloudFront
Date: Mon, 22 Dec 2025 07:20:25 GMT
Content-Type: text/html
Content-Length: 167
Connection: close
Location: https://cu.cepheid.com/
X-Cache: Redirect from cloudfront
Via: 1.1 421eaac04af7b6f186e858683cf405c4.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: FRA60-P13
X-Amz-Cf-Id: iU8rz6j-Ax98gOLMcqs2z3LCTNXUJXAeU_cSPxCj1wkChxNPzyYibA==
X-Content-Type-Options: nosniff

Page title: 301 Moved Permanently

<html>
<head><title>301 Moved Permanently</title></head>
<body>
<center><h1>301 Moved Permanently</h1></center>
<hr><center>CloudFront</center>
</body>
</html>

HTTP/1.1 200 OK
Server: CloudFront
Content-Type: text/html; charset=utf-8
Content-Length: 1769
Connection: close
Vary: Accept-Encoding
Date: Mon, 22 Dec 2025 07:20:26 GMT
x-request-id: CUSTOMER-AGK-7dd0-48a3-8687-fad76f4a2feb-t1766388026070
set-cookie: _csrf-prod-us=NIzWcf6lRYmjRuiW2CYW%2BfzNHYEhAnwqMJmvEwx1utEjrkZFN62ZyV2lNGTdgWBzDfgBQ340ZKvxRII4BtsuVMWxIKRBd5BGoPVELJ52rEX6bouj8k1gTQhpWbHMWK8Udgb3cQ%3D%3D; Max-Age=2592000; Domain=cu.cepheid.com; Path=/; Expires=Wed, 21 Jan 2026 07:20:26 GMT; HttpOnly; Secure; SameSite=Lax
set-cookie: mts-us-east-1=s%3ALvRr2oPbKYf2atjrmnVtVxVr2eA1dP1l.jAhs7CHfi25PYU2iJsSFGyO2sp%2FQ7qJi2N1r2tNtRY8; Path=/; HttpOnly; Secure; SameSite=None
mtr: us-east-1
etag: W/"6e9-utfYM9hF0DKj1sFqEfGIX70XKak"
x-envoy-upstream-service-time: 32
Access-Control-Expose-Headers: x-request-time, x-envoy-upstream-service-time, x-request-id, server-timing
X-Content-Type-Options: nosniff
X-Request-Time: 0.034;
content-security-policy: frame-ancestors 'self' *.actionaly.com *.aiwyn.ai *.alkami.com *.ameyo.com *.annata.net *.arht.tech *.atlassian.com *.atlassian.net *.brighter.ai *.centripetal.ai *.classtime.com *.clearwaveinc.com *.contentsquare.com *.crm.ondemand.com *.darktrace.com *.doubleoctopus.com *.dynamics.com *.enable.com *.enable.us *.engagingnetworks.net *.flyr.com *.force.com *.forduniversity.com *.gainsight.com *.h-dnet.com *.highspot.com *.hubspot.com *.hubspoteditor.com *.ipresent.com *.ipresentweb.com *.justappraised.com *.live.com *.mediafly.com *.mindtickle.app *.mindtickle.com *.mismo.team *.myfreshworks.com *.numero.ai *.okta.com *.papirfly.com *.pascivite.com *.peoplegrove.com *.propelleraero.com *.reverselogix.com *.rheinberg-pools.de *.rready.com *.salesforce-communities.com *.salesforce-experience.com *.salesforce.com *.schoolmint.com *.schoolstatus.com *.seismic.com *.site.com *.splunkcoach.com *.stripe.partners *.supremeopti.com *.talview.com *.techsee.me *.tenable.com *.theiquest.com *.thermofisher.one *.tracegains.com *.trexgroup.com *.trucesoftware.com *.trustnetinc.com *.twilio.com *.uniphorecloud.com *.unraveldata.com *.upshop.com *.voucherify.io *.wisesystems.com *.zendesk.com *.zoom.us digdeeper.sysdig.com *.showpad.biz *.office.com *.office365.com partnertraining.bluebeam.com *.goto.com enablement.cribl.io *.bitsight.com *.outreach.io *.develop.lightning.force.com *.lightning.force.com *.redhat.com *.everfox.com *.keyfactor.com *.bottomline.com *.keymarkinc.com *.browserstack.com *.prescryptive.com *.lincoln.com *.haasalert.com *.lincolnforyou.com *.firstsource.com *.druva.com *.lookbookhq.com *.cisco.com *.oneidentity.com *.whatfix.com whatfix.com *.climateimpact.com *.graphisoft.com *.huntress.com *.expel.com *.sayari.com *.hellopebl.com *.saludamedical.com *.checkr.com
X-Cache: Miss from cloudfront
Via: 1.1 387be0cf162c8cb6592090f9496a1e92.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: FRA60-P13
X-Amz-Cf-Id: RilL1SPb-cHqtPxiPrzsOcvLOiQ-1wQ-O8z3P-E20aRcICo1dUewEQ==
Strict-Transport-Security: max-age=31536000; includeSubDomains
Server-Timing: cdn-upstream-layer;desc="Origin Shield",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=12,cdn-upstream-fbl;dur=55,cdn-cache-miss,cdn-pop;desc="FRA60-P13",cdn-rid;desc="RilL1SPb-cHqtPxiPrzsOcvLOiQ-1wQ-O8z3P-E20aRcICo1dUewEQ==",cdn-downstream-fbl;dur=349


<!DOCTYPE html>
<html xmlns="http://www.w3.org/1999/xhtml" dir="ltr" lang="en-US">

<head>
  <script type="text/javascript" nonce="5e0d52a8">
    var sameSiteNoneCompatible = "true" === "true";
    var query = '';
    var redirectUrl = '/' ;
    if (redirectUrl) {
          query = `?loginredirecturi=${encodeURIComponent(redirectUrl)}`
    }

    function getCookieValue (key, value, expires) {
      /* Note:
        We cannot set 'httpOnly' attribute in this cookie due to below two reasons:
        1. 'httpOnly' cookie can only be set by the server and not by any client side code.
        https://stackoverflow.com/questions/14691654/set-a-cookie-to-httponly-via-javascript
        2. We do not have access to location.hash in app-gatekeeper
        https://stackoverflow.com/questions/17744003/get-url-after-in-express-js-middleware-request/43280710
       */
      var cookie = key + "=" + value + "; expires=" + expires + '; path=/; Secure';
      if(sameSiteNoneCompatible) {
        cookie += '; SameSite=None'
      }
      return cookie;
    }

    function setCookie (key, value, days) {
        var date = new Date();
        days = days || 1;
        // Get unix milliseconds at current time plus number of days
        date.setTime(+ date + (days * 86400000)); //24 * 60 * 60 * 1000
        window.document.cookie = getCookieValue(key, value, date.toGMTString());
        return value;
    }

    var delete_cookie = function(key) {
        document.cookie = getCookieValue(key, '', 'Thu, 01 Jan 1970 00:00:01 GMT');
    };

    if (window.location.hash) {
      setCookie('hashRedirectURL', window.location.hash, 1);
    } else {
      delete_cookie('hashRedirectURL');
    }
    window.location.href = '/login' + query;
  </script>
</head>

</html>

HTTP/1.1 301 Moved Permanently
Server: CloudFront
Date: Mon, 22 Dec 2025 07:20:25 GMT
Content-Type: text/html
Content-Length: 167
Connection: close
Location: https://cu.cepheid.com/
X-Cache: Redirect from cloudfront
Via: 1.1 d07394c1abd1aadfca4b7709ba1de6a8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: FRA60-P13
X-Amz-Cf-Id: ouegXnGtwBCbnC1I10u7i6Imgna95l_esjcv_osNRK8RmK0hz8tGhg==
X-Content-Type-Options: nosniff

Page title: 301 Moved Permanently

<html>
<head><title>301 Moved Permanently</title></head>
<body>
<center><h1>301 Moved Permanently</h1></center>
<hr><center>CloudFront</center>
</body>
</html>

HTTP/1.1 200 OK
Server: CloudFront
Content-Type: text/html; charset=utf-8
Content-Length: 1769
Connection: close
Vary: Accept-Encoding
Date: Mon, 22 Dec 2025 07:20:25 GMT
x-request-id: CUSTOMER-AGK-6582-4dec-a3eb-c9b972b7d9f1-t1766388025859
set-cookie: _csrf-prod-us=TJgpv0sqrirawsSrxEK2w96BwAbD7RBs5Eq0xcQoUiPa7m6Yiqgpnn0zEbyRzrsrCFKlofrmGt0DXGXqBDDEd1uLs56WmOVrrBm%2BkbHdRIQGstlAjAlTugvXcNaSX18FbwIajA%3D%3D; Max-Age=2592000; Domain=cu.cepheid.com; Path=/; Expires=Wed, 21 Jan 2026 07:20:25 GMT; HttpOnly; Secure; SameSite=Lax
set-cookie: mts-us-east-1=s%3A1QsMLjMRdxGsio21v29zI2xM6cppq96C.1np73ZQjdm%2F9s2P8urLi9OuDzb%2Bko2vFXH1ZNRfq1D0; Path=/; HttpOnly; Secure; SameSite=None
mtr: us-east-1
etag: W/"6e9-utfYM9hF0DKj1sFqEfGIX70XKak"
x-envoy-upstream-service-time: 42
Access-Control-Expose-Headers: x-request-time, x-envoy-upstream-service-time, x-request-id, server-timing
X-Content-Type-Options: nosniff
X-Request-Time: 0.046;
content-security-policy: frame-ancestors 'self' *.actionaly.com *.aiwyn.ai *.alkami.com *.ameyo.com *.annata.net *.arht.tech *.atlassian.com *.atlassian.net *.brighter.ai *.centripetal.ai *.classtime.com *.clearwaveinc.com *.contentsquare.com *.crm.ondemand.com *.darktrace.com *.doubleoctopus.com *.dynamics.com *.enable.com *.enable.us *.engagingnetworks.net *.flyr.com *.force.com *.forduniversity.com *.gainsight.com *.h-dnet.com *.highspot.com *.hubspot.com *.hubspoteditor.com *.ipresent.com *.ipresentweb.com *.justappraised.com *.live.com *.mediafly.com *.mindtickle.app *.mindtickle.com *.mismo.team *.myfreshworks.com *.numero.ai *.okta.com *.papirfly.com *.pascivite.com *.peoplegrove.com *.propelleraero.com *.reverselogix.com *.rheinberg-pools.de *.rready.com *.salesforce-communities.com *.salesforce-experience.com *.salesforce.com *.schoolmint.com *.schoolstatus.com *.seismic.com *.site.com *.splunkcoach.com *.stripe.partners *.supremeopti.com *.talview.com *.techsee.me *.tenable.com *.theiquest.com *.thermofisher.one *.tracegains.com *.trexgroup.com *.trucesoftware.com *.trustnetinc.com *.twilio.com *.uniphorecloud.com *.unraveldata.com *.upshop.com *.voucherify.io *.wisesystems.com *.zendesk.com *.zoom.us digdeeper.sysdig.com *.showpad.biz *.office.com *.office365.com partnertraining.bluebeam.com *.goto.com enablement.cribl.io *.bitsight.com *.outreach.io *.develop.lightning.force.com *.lightning.force.com *.redhat.com *.everfox.com *.keyfactor.com *.bottomline.com *.keymarkinc.com *.browserstack.com *.prescryptive.com *.lincoln.com *.haasalert.com *.lincolnforyou.com *.firstsource.com *.druva.com *.lookbookhq.com *.cisco.com *.oneidentity.com *.whatfix.com whatfix.com *.climateimpact.com *.graphisoft.com *.huntress.com *.expel.com *.sayari.com *.hellopebl.com *.saludamedical.com *.checkr.com
X-Cache: Miss from cloudfront
Via: 1.1 13cf0cb36194e875c127f27844256ba4.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: FRA60-P13
X-Amz-Cf-Id: 8kno3dykvj2ilzGUArMItBFEc3tkFwG_TvAZfMowArhKQaOAUq9Zxw==
Strict-Transport-Security: max-age=31536000; includeSubDomains
Server-Timing: cdn-upstream-layer;desc="Origin Shield",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=3,cdn-upstream-fbl;dur=53,cdn-cache-miss,cdn-pop;desc="FRA60-P13",cdn-rid;desc="8kno3dykvj2ilzGUArMItBFEc3tkFwG_TvAZfMowArhKQaOAUq9Zxw==",cdn-downstream-fbl;dur=164


<!DOCTYPE html>
<html xmlns="http://www.w3.org/1999/xhtml" dir="ltr" lang="en-US">

<head>
  <script type="text/javascript" nonce="5e0d52a8">
    var sameSiteNoneCompatible = "true" === "true";
    var query = '';
    var redirectUrl = '/' ;
    if (redirectUrl) {
          query = `?loginredirecturi=${encodeURIComponent(redirectUrl)}`
    }

    function getCookieValue (key, value, expires) {
      /* Note:
        We cannot set 'httpOnly' attribute in this cookie due to below two reasons:
        1. 'httpOnly' cookie can only be set by the server and not by any client side code.
        https://stackoverflow.com/questions/14691654/set-a-cookie-to-httponly-via-javascript
        2. We do not have access to location.hash in app-gatekeeper
        https://stackoverflow.com/questions/17744003/get-url-after-in-express-js-middleware-request/43280710
       */
      var cookie = key + "=" + value + "; expires=" + expires + '; path=/; Secure';
      if(sameSiteNoneCompatible) {
        cookie += '; SameSite=None'
      }
      return cookie;
    }

    function setCookie (key, value, days) {
        var date = new Date();
        days = days || 1;
        // Get unix milliseconds at current time plus number of days
        date.setTime(+ date + (days * 86400000)); //24 * 60 * 60 * 1000
        window.document.cookie = getCookieValue(key, value, date.toGMTString());
        return value;
    }

    var delete_cookie = function(key) {
        document.cookie = getCookieValue(key, '', 'Thu, 01 Jan 1970 00:00:01 GMT');
    };

    if (window.location.hash) {
      setCookie('hashRedirectURL', window.location.hash, 1);
    } else {
      delete_cookie('hashRedirectURL');
    }
    window.location.href = '/login' + query;
  </script>
</head>

</html>

HTTP/1.1 301 Moved Permanently
Server: CloudFront
Date: Mon, 22 Dec 2025 07:20:25 GMT
Content-Type: text/html
Content-Length: 167
Connection: close
Location: https://cu.cepheid.com/
X-Cache: Redirect from cloudfront
Via: 1.1 17cfc7795230164c1f6ea71024045250.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: FRA60-P13
X-Amz-Cf-Id: qocuPmwbXhJnFgGL-3G0ziw4Z4I9QooCuN4PSCh9T7U4O9zAddr0oA==
X-Content-Type-Options: nosniff

Page title: 301 Moved Permanently

<html>
<head><title>301 Moved Permanently</title></head>
<body>
<center><h1>301 Moved Permanently</h1></center>
<hr><center>CloudFront</center>
</body>
</html>

HTTP/1.1 301 Moved Permanently
Server: CloudFront
Date: Mon, 22 Dec 2025 07:20:25 GMT
Content-Type: text/html
Content-Length: 167
Connection: close
Location: https://cu.cepheid.com/
X-Cache: Redirect from cloudfront
Via: 1.1 b3c2d934335633b45a80b7ad63463cda.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: FRA60-P13
X-Amz-Cf-Id: _Sqau2vMqZYgExNs9FUhcdshF3OcqrJmmxUqwIN9mEyEmwWAWu10UA==
X-Content-Type-Options: nosniff

Page title: 301 Moved Permanently

<html>
<head><title>301 Moved Permanently</title></head>
<body>
<center><h1>301 Moved Permanently</h1></center>
<hr><center>CloudFront</center>
</body>
</html>