An existing connection was forcibly closed by the remote host

goussarova · March 15, 2021, 8:20pm

Hi,

I am trying to set up our AWS based web site to authenticate our clients using their Okta credentials.
I am getting a 500 Internal error response from Okta - see stack trace below.
Could you please tell me what could be the problem, and how I should resolve it?

Thank you for your help!

IDX10803: Unable to create to obtain configuration from: ‘https://xxx.okta.com/.well-known/openid-configuration’.]

HTTP response: 500 Internal Server Error
Request.HttpMethod = GET
Request.Headers:
Connection = close
Accept-Encoding = gzip, compressed
Host = 10.0.6.202
User-Agent = ELB-HealthChecker/2.0
Context.User.Identity.Name =
Request.UserHostAddress = 10.0.0.208
Request.UserHostName = ip-10-0-0-208.us-west-1.compute.internal
Request.UrlReferrer =
Request.Url=https://10.0.6.202/
Request.QueryString:
Request.Form variables:
Exception detail:
[System.Net.Sockets.SocketException: An existing connection was forcibly closed by the remote host]
at System.Net.Sockets.Socket.EndReceive(IAsyncResult asyncResult)
at System.Net.Sockets.NetworkStream.EndRead(IAsyncResult asyncResult)

[System.IO.IOException: Unable to read data from the transport connection: An existing connection was forcibly closed by the remote host.]
at System.Net.TlsStream.EndWrite(IAsyncResult asyncResult)
at System.Net.PooledStream.EndWrite(IAsyncResult asyncResult)
at System.Net.ConnectStream.WriteHeadersCallback(IAsyncResult ar)
…

erin.p · March 15, 2021, 9:28pm

Are you using your org authorization server to access the well-known endpoint? If you are using a free account / do not have API Access Management this endpoint will not work with a custom authorization server.

https://developer.okta.com/docs/reference/api/oidc/#well-known-openid-configuration

kevintparker · March 19, 2021, 1:51am

I’ve also seen this error if you are not using TLS 1.2 in your .NET code.

goussarova · March 19, 2021, 2:24am

Hi Okta support,
I am in the process of working with our client to figure this out. It is moving slowly.
So far, I fixed the TSL 1.2, and I learned that the client is using a return url different from what we expect.
When I learn more, I will come back here and update this thread.
Thank you for your help!

goussarova · April 8, 2021, 4:16pm

This was resolved when we found that return uri’s were wrong.

system · April 9, 2021, 4:17pm

This topic was automatically closed 24 hours after the last reply. New replies are no longer allowed.

Post		Replies	Views
IDX20803: Unable to obtain configuration from Questions	5	10910	February 8, 2024
Unable to obtain configuration from: 'https://<domain>oauth2/<appid>/.well-known/openid-configuration' Questions	4	6151	May 7, 2021
IDX20804: Unable to retrieve document ASP.net Webforms Questions dotnet	2	6927	October 15, 2021
An unhandled exception occurred while processing the request Questions	2	3690	February 8, 2024
Getting IDX20803 error when trying to access the openid-configuration url Questions	4	6929	August 16, 2019

An existing connection was forcibly closed by the remote host

Related topics