---
title: "OpenID SSO issues"
slug: "openid-sso-issues"
updated: 2026-06-03T11:19:27Z
published: 2026-06-03T11:19:27Z
---

> ## Documentation Index
> Fetch the complete documentation index at: https://docs.document360.com/llms.txt
> Use this file to discover all available pages before exploring further.

# OpenID SSO issues

## SSO Login Fails with HTTP ERROR 500

**Error:** During SSO login using Azure AD (Microsoft ADFS OpenID), the following error appears:

> “This page is not working at the moment – [identity.document360.io](http://identity.document360.io) can’t currently handle this request (HTTP ERROR 500)”

Error page displayed during SSO authentication showing an HTTP ERROR 500 message.

**Cause**

This issue occurs when the client secret configured for the Azure AD (Microsoft ADFS) SSO application has expired. As a result, the token endpoint returns a `401 Unauthorized` response during the authentication process.

**Steps to resolve**

1. Sign in to the Azure portal.
2. Navigate to **Microsoft Entra ID** > **App registrations**.
3. Open the SSO application using the configured **Client ID**.
4. Go to **Certificates & secrets**.
5. Under **Client secrets**, click **New client secret**.
6. Enter a description and select the required expiry duration.
7. Click **Add**.
8. Copy the **Secret Value** immediately.

> Do not copy the **Secret ID**, as the secret value is displayed only once.
9. In Document360, navigate to the SSO / IdP configuration.
10. Replace the existing client secret with the newly generated secret value.
11. Save the changes.
12. Test the SSO login again to confirm the issue is resolved.