Skip to content
English
Sign in
My Inbox
  • There are no suggestions because the search field is empty.

SSO Authentication Failure: "Failure when receiving data from the peer"

Troubleshooting for the SSO Authentication Failure: "Failure when receiving data from the peer"

Issue

When trying to activate KeyShot Studio, the following error when signing in to KeyShot
 Authentication state: Unauthenticated Message: "SSO exchange error:
Failure when receiving data from the peer"


Environment Details

  • KeyShot
    • 2026.1+
  • Subscription License

Troubleshooting

Please check if you can access https://login-configuration.keyshot.com/ in your browser. If you get a response in the browser but KeyShot fails to sign in, the error is likely caused by a corporate firewall or security appliance blocking HTTPS POST requests to login.keyshot.com/oauth2/token.


Resolution

Ask the customer's IT department to ensure the following endpoints are allowlisted for HTTPS POST traffic (not just GET):

The exact IPs used can be found in auth_cache.json: 

{
  "authUrl": "https://login.keyshot.com/oauth2/authorize",
  "beta": true,
  "clientId": "xxxxxxxxxxx",
  "clientName": "keyshot",
  "configUrl": "https://login-configuration.keyshot.com/",
  "localhostFailureRedirectUri": "https://app.keyshot.com/sign-in/failure",
  "localhostPorts": [
    30794,
    31017,
    31672,
    33552,
    33771,
    34393,
    34626,
    35353,
    39419,
    39503
  ],
  "localhostSuccessRedirectUri": "https://app.keyshot.com/sign-in/success",
  "loginRedirectUri": "https://app.keyshot.com/logged-in/keyshot/beta",
  "logoutRedirectUri": "https://app.keyshot.com/signed-out/keyshot/beta",
  "logoutUrl": "https://login.keyshot.com/logout",
  "proxySettings": {
    "enableAuthentication": false,
    "host": "localhost",
    "obfuscatedPassword": "",
    "port": 8080,
    "proxyType": 2,
    "username": ""
  },
  "revocationUrl": "https://login.keyshot.com/oauth2/revoke",
  "tokenUrl": "https://login.keyshot.com/oauth2/token",
  "userInfoUrl": "https://login.keyshot.com/oauth2/userInfo"
}


Add the following KeyShot URLs to the Firewall Whitelist for the organization:

NOTE: It is also recommended to have TCP Ports 80/443 open.