When logging into SPP the first time with a user that has OneLogin MFA enabled as secondary authentication, the first login attempt fails with the following error:
A system error occurred and has been logged. Please try again later or contact your administrator.
Trying to login again a second time works successfully.
RSTS logs show the following:
[TimeStamp] [D] OneLogin API request error. Clearing access token.
{"statusCode":401,"name":"InvalidCredentials","message":"Please provide valid credentials"} {RstsLogTraceListener.WriteInternal}
[TimeStamp] [D] Requesting new access token for OneLogin API. {RstsLogTraceListener.WriteInternal}
[TimeStamp] [D] OneLogin API request error. Clearing access token.
{"statusCode":401,"name":"InvalidCredentials","message":"Please provide valid credentials"} {RstsLogTraceListener.WriteInternal}
[TimeStamp] [E] Message: {"statusCode":401,"name":"InvalidCredentials","message":"Please provide valid credentials"}
Exception: System.Exception
Stack:
at RSts.OneLoginMfaProvider.Api.HttpRequest(String method, String url, String accessToken, String postData)
at RSts.OneLoginMfaProvider.Api.ApiRequest(String method, String url, String postData)
at RSts.OneLoginMfaProvider.Api.GetEnrolledFactors(String userID)
at RSts.OneLoginMfaProvider.AuthenticationService.GetEnrolledSupportedFactors(String userID)
at RSts.OneLoginMfaProvider.AuthenticationService.ChallengeResponseNeededForAuthenticate(IUser user, String deviceID)
at RSts.OneLoginMfaProvider.AuthenticationService.PreAuthenticate(IUser user)
at Rsts.WebRoot.UserLogin.LoginController.MultiFactorPreAuthenticate() in D:\a\1\s\HttpService\WebRoot\UserLogin\LoginController.cs:line 1425
at Rsts.WebRoot.UserLogin.LoginController.ProcessRequest(HttpListenerContext context) in D:\a\1\s\HttpService\WebRoot\UserLogin\LoginController.cs:line 225
Inner Exception:
Message: The remote server returned an error: (401) Unauthorized.
Exception: System.Net.WebException
Stack:
at System.Net.HttpWebRequest.GetResponse()
at RSts.OneLoginMfaProvider.Api.HttpRequest(String method, String url, String accessToken, String postData)
OneLogin API returned a 401 unauthorized error in case of an expired access token
STATUS
Change Request # 480369 will be addressed in a future release of SPP subject to successful QA testing and product management approval.
WORKAROUND:
Attempting to login again works as SPP refreshes the access token
© 2025 ALL RIGHTS RESERVED. Terms of Use Privacy Cookie Preference Center