AuthPoint Error Codes

AuthPoint error codes are formed by three sections, each one consisting of three digits, expressed as <microservice>.<feature>.<error>.

The error codes are displayed here with dots to make them easy to distinguish, but the actual error codes do not contain these separators.

Microservice Code Description
201  
Feature Code Description
005 General
015 Logon App
025 SAML - LDAP
035 LDAP
045 Transaction
055 Push
075 RADIUS
085 SAML
087 SAML
088 SAML
095 ADFS
105 Policy
115 Web Service
125 SAML
135 Policy
Error Code Description Related To
201.005.001 The authentication attempt is not authorized. Authentication
201.005.002 Internal error. Could not generate the MFA request. Authentication
201.005.003 MFA is temporarily not available. Authentication
201.005.004 The authentication type is not valid. Authentication
201.005.005 Cannot communicate with the Gateway. LDAP
201.005.006 No authentication response. Cannot communicate with the LDAP source. LDAP
201.005.007 LDAP configuration error. There is no ID. LDAP
201.005.008 LDAP configuration error. There is no DN. LDAP
201.005.009 Could not generate the LDAP Gateway request. LDAP
201.005.010 The password is not correct. LDAP
201.005.011 The LDAP gateway is not available. LDAP
201.005.012 Resource not found. Authentication
201.005.013 Gateway not found. Authentication
201.005.014 Not authorized. The Gateway is not connected. LDAP
201.005.015 The OTP is not in the correct format. Authentication
201.005.016 Unexpected error. Authentication
201.005.017 Unexpected error. Authentication
201.005.018 This type of authentication is not supported for LDAP users. LDAP
201.005.019 The user is blocked. Authentication
201.015.001 Unauthorized back end request. Logon App
201.015.002 Could not read the request body. Logon App
201.015.003 The request body is not valid. Logon App
201.015.004 Resource not found. Logon App
201.015.005 There is no license for this account. Logon App
201.015.006 The license for this account is expired. Logon App
201.015.007 There are no authentication settings for this account. Logon App
201.015.008 User not found. Logon App
201.015.009 The user is quarantined. Logon App
201.015.010 The user's group does not have an access policy for this resource. Logon App
201.015.011 The user is overallocated. Logon App
201.025.012 User not found. SAML
201.035.001 Unauthorized back end request. LDAP
201.045.001 Request is not valid. Transaction
201.045.002 Authentication expired. Transaction
201.045.003 Authentication is not authorized. Transaction
201.045.004 Unexpected error. Transaction
201.045.005 Authentication failed. Transaction
201.045.006 The authentication transaction status is not valid. Transaction
201.045.007 Could not generate the MFA transaction request. Transaction
201.045.008 MFA is temporarily not available. Transaction
201.045.009 Transaction command error. Transaction
201.045.010 Could not generate the transaction data. Transaction
201.045.011 User not found. Transaction
201.045.012 Transaction push data not found. Transaction
201.045.013 The push was not sent. Transaction
201.045.014 The push was sent. Transaction
201.045.015 The push was received by at least one device. Transaction
201.045.016 The push was not received by any device. Transaction
201.045.017 The push was not answered by any device. Transaction
201.045.018 The transactionId is not valid. Transaction
201.055.001 Not authorized. Push
201.055.002 The request is not valid. Push
201.055.003 The request is not valid. Push
201.055.004 There is no license for this account. Push
201.055.005 The license for this account is expired. Push
201.055.006 The user is quarantined. Push
201.055.007 User not found. Push
201.055.008 The user denied the push notification. Push
201.055.009 The user is overallocated. Push
201.055.010 Transaction not found. Push
201.055.011 Transaction push data not found. Push
201.055.012 User not found. Push
201.075.001 There is no license for this account. RADIUS
201.075.002 The license for this account is expired. RADIUS
201.075.003 The user is quarantined. RADIUS
201.075.004 Resource not found RADIUS
201.075.005 User not found. RADIUS
201.075.006 The user's group does not have an access policy for this resource. RADIUS
201.075.007 Gateway not found. RADIUS
201.075.008 Unexpected error. RADIUS
201.075.009 Unexpected error. RADIUS
201.075.010 The authentication request is not valid. RADIUS
201.075.011 The protocol type is not valid. RADIUS
201.075.012 The Gateway ID is not valid. RADIUS
201.075.013 The time stamp is not valid. RADIUS
201.075.014 The password or OTP is not in the correct format. RADIUS
201.075.015 The authentication protocol is not valid. RADIUS
201.075.016 Unauthorized back end request. RADIUS
201.075.017 Could not decrypt the payload. RADIUS
201.075.018 Could not encrypt the payload. RADIUS
201.075.019 The user is overallocated. RADIUS
201.085.001 The request is not valid. SAML
201.085.002 The AuthnRequest object is not valid. SAML
201.085.003 Unexpected error. SAML
201.085.004 There is no account with this account ID. SAML
201.085.005 The account ID in the security context does not match the account ID in the request. SAML
201.085.006 Service provider not found. SAML
201.085.007 This group does not have an access policy for an IdP portal resource. SAML
201.085.008 The user's group is not authorized to log in to this SAML resource. SAML
201.085.009 The access policy requires a more secure authentication method. SAML
201.085.010 Reconnecting to the SAML state management microservice. SAML
201.085.011 Unexpected error. SAML
201.085.012 The license for this account is not valid. SAML
201.085.013 The user is quarantined. SAML
201.085.014 Not authorized. SAML
201.085.015 The user is overallocated. SAML
201.085.016 The user cannot authenticate to this SAML resource because federation conditions or attributes are missing. SAML
201.086.001 There is no certificate for this account. SAML
201.086.002 Reconnecting to the certificate management microservice. SAML
201.086.003 The certificate management microservice did not respond correctly. SAML
201.086.004 There was an error with the encryption API microservice response. SAML
201.086.005 Reconnecting to the encryption API microservice. SAML
201.086.006 Could not retrieve the key pair. SAML
201.087.001 Not authorized. SAML
201.087.002 The request is not valid. SAML
201.087.003 Inner SAML error. SAML
201.087.004 Unknown service provider (relying party). SAML
201.095.001 Authentication is not valid. ADFS
201.095.002 Authentication is not valid. ADFS
201.095.003 Authentication is not valid. ADFS
201.095.004 Gateway not found. ADFS
201.095.005 There is no license for this account. ADFS
201.095.006 The license for this account is expired. ADFS
201.095.007 Authentication settings not found. ADFS
201.095.008 Resource not found. ADFS
201.095.009 The user is quarantined. ADFS
201.095.010 User not found. ADFS
201.095.011 Access policy not found. ADFS
201.095.012 The user is overallocated. ADFS
201.105.001 The request is not authorized. Policy
201.105.002 The request is not valid. Policy
201.105.003 Resource not found. Policy
201.105.004 There is no license for this account. Policy
201.105.005 The license for this account is expired. Policy
201.105.006 Gateway not found. Policy
201.105.007 Could not generate a response. Policy
201.115.001 The request is not authorized for this account ID. Web Service
201.115.002 Could not read the request body. Web Service
201.115.003 The request is not valid. Web Service
201.115.004 There is no license for this account. Web Service
201.115.005 The license for this account is expired. Web Service
201.115.006 Authentication settings not found. Web Service
201.115.007 Resource not found. Web Service
201.115.008 The user is quarantined. Web Service
201.115.009 User not found. Web Service
201.115.010 Access policy not found. Web Service
201.115.011 The user is overallocated. Web Service
201.115.012 The token is not valid or missing. Web Service
201.115.013 The request is not authorized for this access ID. Make sure that a read/write access ID is required for this request. Web Service
201.115.014 The OTP is not in the correct format. Web Service
201.115.015 The OTP must be six numbers. Web Service
201.115.016 The QR code response is not in the correct format. Web Service
201.115.017 The QR code response size is not valid. Web Service
201.115.018 The verification code is not in the correct format. Web Service
201.115.019 The verification code must be six numbers. Web Service
201.115.020 The activation code is not in the correct format. Web Service
201.115.021 The activation code size is not valid. Web Service
201.115.022 The forgot token interval is not valid. Web Service
201.125.001 Pending Token Activation not found. SAML
201.135.001 The request is not authorized. Policy
201.135.002 The request is not valid. Policy
201.135.003 Resource not found. Policy
201.135.004 There is no license for this account. Policy
201.135.005 The license for this account is expired. Policy
201.135.006 Gateway not found. Policy
201.135.007 Could not generate the response. Policy
201.135.008 User not found. Policy
201.135.009 The user is quarantined. Policy
201.135.010 The user is overallocated. Policy
201.135.011 Access policy not found. Policy
201.135.012 The password is not correct. Policy

Agent for macOS Error Messages

AuthPoint error codes are formed by three sections, each one consisting of three digits, expressed as <domain>.<operation>.<error>.

For example, the error 406.001.051 can be broken down as:

  • Domain — 406 (agent for macOS application)
  • Operation — 001 (push authentication)
  • Error — 051 (security error)

So the error (406.001.051) indicates that when the agent for macOS performed a push authentication operation, there was a security error.

For HTTP errors (Domain 408), the third section of the error code is the HTTP error. For example, the error 408.002.400 indicates that when the agent for macOS performed a QR code authentication operation, it received a 400 HTTP error from the server.

Domain Code Description
406 Agent for macOS Application
407 Agent for macOS SDK
408 HTTP Error — Agent for macOS Application
Operation Code Description
000 Initial Configuration
001 Push Authentication
002 QR Code Authentication
003 OTP Authentication
004 Forgot Token

The error codes are divided into ranges based on what the error is related to:

  • 000–049 — Access for non-AuthPoint users errors
  • 050–099 — Security errors
  • 100–149 — Server response errors
  • 150–199 — User input errors
  • 200–249 — Unexpected errors
  • 250–299 — Communication errors
  • 300–349 — Token management errors
Error Code Description Reason
Access for Non-AuthPoint Users Errors (000–049)
000

Internal Error. Contact your AuthPoint administrator or Service Provider for assistance.

This error occurs when there is an error that the agent for macOS does not recognize.

001 Internal Error. Contact your AuthPoint administrator or Service Provider for assistance.

This error occurs when the Desktop Logon file cannot be decrypted.

002 Internal Error. Contact your AuthPoint administrator or Service Provider for assistance.

This error occurs when the Desktop Logon file cannot be parsed from JSON to its model class.

003 Internal Error. Contact your AuthPoint administrator or Service Provider for assistance.

This error occurs when data from the Desktop Logon file is not valid.

004 Internal Error. Contact your AuthPoint administrator or Service Provider for assistance.

This error occurs when there is no configuration file.

005 Internal Error. Contact your AuthPoint administrator or Service Provider for assistance.

This error occurs when the configuration file cannot be parsed from JSON to its model class.

006 Your user was not found in the configuration file.

This error occurs when the configuration file does not contain information about the user.

This might happen if a user logs in for the first time without an Internet connection. Make sure the computer has an Internet connection and try again.

007 Internal Error. Contact your AuthPoint administrator or Service Provider for assistance. This error occurs when the configuration file does not contain a specific user configuration.
008 Internal Error. Contact your AuthPoint administrator or Service Provider for assistance.

This error occurs when the authentication settings from the configuration file cannot be parsed from JSON to its model class.

009 Internal Error. Contact your AuthPoint administrator or Service Provider for assistance.

This error occurs when the user name cannot be retrieved from the computer.

010 The AuthPoint Logon app is installed on this computer, but the access policy for your AuthPoint user group does not require MFA.

This message is shown when the agent for macOS is installed but MFA is not required or the resource in AuthPoint has been deleted.

011 Internal Error. Contact your AuthPoint administrator or Service Provider for assistance.

This error occurs when the Desktop Logon file cannot be encoded.

012 Internal Error. Contact your AuthPoint administrator or Service Provider for assistance.

This error occurs when the Desktop Logon file cannot be decoded.

013 Internal Error. Contact your AuthPoint administrator or Service Provider for assistance.

This error occurs when the encryption or decryption key cannot be generated when encrypting or decrypting the Desktop Logon file.

014 Internal Error. Contact your AuthPoint administrator or Service Provider for assistance.

This error occurs when the Desktop Logon file cannot be retrieved while it is encoded or decoded.

Security Errors (050–099)

050 Internal Error. Contact your AuthPoint administrator or Service Provider for assistance.

This error occurs when the request body package cannot be encoded.

051 Internal Error. Contact your AuthPoint administrator or Service Provider for assistance.

This error occurs when the response cannot be decoded.

Server Response Errors (100–149)

100 Internal Error. Contact your AuthPoint administrator or Service Provider for assistance.

This error occurs when the response data from server cannot be parsed from JSON to its model class.

101 Internal Error. Contact your AuthPoint administrator or Service Provider for assistance. This error occurs when the response from a request is empty.
102 Internal Error. Contact your AuthPoint administrator or Service Provider for assistance. This error occurs when the authentication is not authorized by the server.
103 Internal Error. Contact your AuthPoint administrator or Service Provider for assistance.

This error occurs when the request to generate a QR code returns an empty transactionID.

104 Your authentication has been denied by the server.

This error occurs when the user's access policy returns false for hasPolicy (the user user does not have an access policy for the Logon app resource).

105 Your authentication has been denied by the server.

This error occurs when the user's access policy returns false for isAllowedToAuthenticate.

106 User not found. Make sure your login information is correct and try again. If the problem persists, contact your AuthPoint administrator or Service Provider for assistance.

This error occurs when the authenticationpolicy response returns an empty policy.

107 You cannot authenticate because your user account or token has been blocked. Contact your AuthPoint administrator or Service Provider for assistance.

This error occurs when the user's access policy returns true for isBlocked.

108 You cannot authenticate because your AuthPoint user account is overallocated. Contact your AuthPoint administrator or Service Provider for assistance.

This error occurs when the user's access policy returns true for isOverallocated.

Users become overallocated when your AuthPoint account has more users than your license supports.

109 You cannot authenticate because your AuthPoint user account is quarantined. Contact your AuthPoint administrator or Service Provider for assistance.

This error occurs when the user's access policy returns true for isInQuarantine.

User Input Errors (150–199)

150 The OTP is not valid. Make sure your OTP is correct and try again.

This error occurs when the OTP entered by the user is not in the valid format.

151 The Verification Code is not valid. Make sure the Verification Code is correct and try again. The Verification Code entered by the user is not in the valid format.
152 The Time Duration you typed is not valid. Make sure the value you typed is correct and try again. The Time Duration entered by the user is not a number.

Unexpected errors (200–249)

200 Internal Error. Contact your AuthPoint administrator or Service Provider for assistance.

This error occurs when the generated Activation Code is not the expected size.

201 Internal Error. Contact your AuthPoint administrator or Service Provider for assistance. This error occurs when the QR code image cannot be generated.
202 Internal Error. Contact your AuthPoint administrator or Service Provider for assistance.

This error occurs when the generated request package cannot be parsed from its model class to a JSON string.

203 Internal Error. Contact your AuthPoint administrator or Service Provider for assistance.

This error occurs when the user name from the configuration file is different from the user name that made the request.

204 Internal Error. Contact your AuthPoint administrator or Service Provider for assistance.

This error occurs when an AuthPoint error code is not valid.

Communication Errors (250-299)

250 Application could not connect to the server. Verify your computer has an Internet connection and try again.

This error occurs when the agent for macOS tries to reach an endpoint and there is no Internet connection.

251 Advanced authentication using Push timed out. Try again or use another authentication option.

This error occurs when the user authenticates with Push and does not approve the Push notification before it expires.

252 Application could not connect to the server. The server connection timed out.

This error occurs when the agent for macOS tries to reach an endpoint and there is a timeout error.

253 Internal Error. Contact your AuthPoint administrator or Service Provider for assistance.

This error occurs when the NSURLDomain exception is not recognized by the app.

254 Internal Error. Contact your AuthPoint administrator or Service Provider for assistance.

This error occurs when the request to a server fails with Alamofire's isInvalidURLError.

255 Internal Error. Contact your AuthPoint administrator or Service Provider for assistance. This error occurs when the request to a server fails with Alamofire's isParameterEncodingError.
256 Internal Error. Contact your AuthPoint administrator or Service Provider for assistance. This error occurs when the request to a server fails with Alamofire's isMultipartEncodingError.
257 Internal Error. Contact your AuthPoint administrator or Service Provider for assistance. This error occurs when the request to a server fails with Alamofire's isResponseValidationError.
258 Internal Error. Contact your AuthPoint administrator or Service Provider for assistance. This error occurs when the request to a server fails with Alamofire's isResponseSerializationError.
259 Could not validate the QR code. Scan the new QR code and type the generated code below.

This error occurs when the agent for macOS cannot validate an online QR code. A new QR code is generated that can be validated without an Internet connection.

260 Internal Error. Contact your AuthPoint administrator or Service Provider for assistance.

This error occurs when a request cannot be created because of the URL.

261 Could not send the automatic push notification. Make sure your computer has an Internet connection and try again.

This error occurs when the agent for macOS tries to reach an endpoint and there is no Internet connection.

Token Management Errors (300-349)
300 You cannot authenticate because your user account has been blocked. Contact your AuthPoint administrator.

This error occurs when the user is blocked.

301 You cannot authenticate because your AuthPoint user account is quarantined. Contact your AuthPoint administrator.

This error occurs when a user authenticates offline and the user's local access policy returns true for isInQuarantine.

302 Internal Error. Contact your AuthPoint administrator or Service Provider for assistance.

This error occurs when a user receives the 104 error (no access policy for the Logon app resource) and then authenticates without an Internet connection.

303 You cannot authenticate because your AuthPoint user account is overallocated. Contact your AuthPoint administrator.

This error occurs when a user receives the 108 error (your AuthPoint user account is overallocated) and then authenticates without an Internet connection.

304 The user has no active authenticator. Contact your AuthPoint administrator.  
305 Internal Error. Contact your AuthPoint administrator or Service Provider for assistance.

This error occurs when a user receives the 201.105.005 error (policy not found) and then authenticates without an Internet connection.

306 Internal Error. Contact your AuthPoint administrator or Service Provider for assistance.

This error occurs when a user receives the 201.105.005 error (expired license) and then authenticates without an Internet connection.

307 Internal Error. Contact your AuthPoint administrator or Service Provider for assistance.

This error occurs when a user authenticates offline and the previous attempt to get the user's access policy returned an unrecognized error.

308 Internal Error. Contact your AuthPoint administrator or Service Provider for assistance.

This error occurs when the Logon app resource has been deleted and the user authenticates offline.

See Also

Troubleshoot AuthPoint