Re: SSO SAML integration with Thingworx 9.3.4 usin...

SV_10197221 · ‎Sep 19, 2025

I am working on SSO SAML integration with Thingworx 9.3.4 using OKTA. and stuck with the below thingworx error apperating in Application log.

Need advice on what might be the issue. I have double checked and validated the path, permission, password mentioned in KeyManagerSettings json parameter in sso-settings.json file.

The error:

WebApp starting...
2025-09-19 13:31:13.071+0530 [L: INFO] [O: c.t.s.ThingWorxPersistenceHandler] [I: ] [U: SuperUser] [S: ] [P: ] [T: main] Default Persistence Provider Name = ThingworxPersistenceProvider
2025-09-19 13:31:13.071+0530 [L: INFO] [O: c.t.s.ThingWorxPersistenceHandler] [I: ] [U: SuperUser] [S: ] [P: ] [T: main] Default Persistence Provider Package Name = PostgresPersistenceProviderPackage
2025-09-19 13:31:13.076+0530 [L: INFO] [O: c.t.p.p.PostgresDatasource] [I: ] [U: SuperUser] [S: ] [P: ] [T: main] Reading configuration from configTableCol
2025-09-19 13:31:13.230+0530 [L: INFO] [O: c.t.p.p.PostgresDatasource] [I: ] [U: SuperUser] [S: ] [P: ] [T: main] INITIALIZED network settings on datasource - networkTimeout=900000 milliseconds, networkTimeoutExecutorThreads=10
2025-09-19 13:31:13.409+0530 [L: INFO] [O: c.t.s.ThingWorxServer] [I: ] [U: SuperUser] [S: ] [P: ] [T: main] Datastore database...INITIALIZED
2025-09-19 13:31:13.503+0530 [L: INFO] [O: c.t.s.SecurityManagerBootstrapper] [I: ] [U: SuperUser] [S: ] [P: ] [T: main] initializing KeyStore provider
2025-09-19 13:31:13.503+0530 [L: INFO] [O: c.t.s.u.SecureTokenUtils] [I: ] [U: SuperUser] [S: ] [P: ] [T: main] Creating new keystore password file at /opt/ThingWorxFoundation/ThingworxPlatform/ssoSecurityConfig/keystore-password
2025-09-19 13:31:13.503+0530 [L: INFO] [O: c.t.s.u.SecureTokenUtils] [I: ] [U: SuperUser] [S: ] [P: ] [T: main] Writing keystore password file at /opt/ThingWorxFoundation/ThingworxPlatform/ssoSecurityConfig/keystore-password
2025-09-19 13:31:13.510+0530 [L: ERROR] [O: c.t.s.SecurityManagerBootstrapper] [I: ] [U: SuperUser] [S: ] [P: ] [T: main] Unable to load SecretProvider, {}
2025-09-19 13:31:13.510+0530 [L: ERROR] [O: c.t.s.SecurityManagerBootstrapper] [I: ] [U: SuperUser] [S: ] [P: ] [T: main] Failed to create SecurityManager, Failed to load SecretProvider
2025-09-19 13:31:13.514+0530 [L: INFO] [O: c.t.s.SecurityManagerBootstrapper] [I: ] [U: ] [S: ] [P: ] [T: main] initializing KeyStore provider
2025-09-19 13:31:13.518+0530 [L: ERROR] [O: c.t.s.SecurityManagerBootstrapper] [I: ] [U: ] [S: ] [P: ] [T: main] Unable to load SecretProvider, {}
2025-09-19 13:31:13.518+0530 [L: ERROR] [O: c.t.s.SecurityManagerBootstrapper] [I: ] [U: ] [S: ] [P: ] [T: main] Failed to create SecurityManager, Failed to load SecretProvider
2025-09-19 13:31:13.519+0530 [L: ERROR] [O: o.s.w.c.ContextLoader] [I: ] [U: SuperUser] [S: ] [P: ] [T: main] Context initialization failed
2025-09-19 13:31:13.520+0530 [L: INFO] [O: c.t.p.p.PersistenceProvider] [I: ] [U: SuperUser] [S: ] [P: ] [T: main] Connection ThingworxPersistenceProvider, type PostgresPersistenceProviderPackage stopped
2025-09-19 13:31:13.521+0530 [L: WARN] [O: c.t.p.p.PersistenceProvider] [I: ] [U: SuperUser] [S: ] [P: ] [T: main] Could not find persistenceProviderPackage PostgresPersistenceProviderPackage and thus could not stop data processing
2025-09-19 13:31:13.523+0530 [L: ERROR] [O: c.t.s.ThingWorxBootstrapper] [I: ] [U: SuperUser] [S: ] [P: ] [T: main] *** CRITICAL ERROR ON STARTUP: Severe error in Custom Context Loader Listener: Failed to retrieve SSOContext
2025-09-19 13:31:13.523+0530 [L: ERROR] [O: c.t.s.ThingWorxBootstrapper] [I: ] [U: SuperUser] [S: ] [P: ] [T: main] *** Web Application STATE is being set to ERROR! ***
2025-09-19 13:31:13.523+0530 [L: INFO] [O: c.t.s.ThingWorxServer] [I: ] [U: SuperUser] [S: ] [P: ] [T: main] >>>>>>> PLATFORM SHUTDOWN START <<<<<<<<<

Surya_Tiwari · ‎Sep 19, 2025

Hi @SV_10197221 look at the article below and let us know your output.

https://www.ptc.com/en/support/article/CS274461

SV_10197221 · ‎Sep 19, 2025

Hi Surya,

Thanks for the link, but this issues was related to temporary files that gets created during TWX service start in ssoSecurityConfig folder. I removed the them are restated, the service is starting successfully. But ever after the SAML authentication, the Thingworx page is redirected and stuck here.

Any Idea on what's causing this ?

There is no error in SAML response by the way. I checked using SAML Tracker .

Thank you.

PEHOWE · ‎Sep 25, 2025

Hello @SV_10197221 ,

Getting access to the articles does require you log into the support site.
There is another article which you should review as well. Article - CS376069 - While configuring ThingWorx for SSO encrypting passwords fails with the error "Error initializing from keystore.conf, Failed to create SecurityManager, Failed to load SecretProvider"

Please review and let me know if this helps

Regards,

Pehowe

PEHOWE · ‎Sep 30, 2025

Hello @SV_10197221 ,
Hope things are going well have you been able to make any progress with the information provided.

Please post a status.
If you have resolved the issue please post your solution for other members of the community.

Regards,

Pehowe

TonyZhang · ‎Sep 25, 2025

Hi @SV_10197221,

Are your passwords encypted in sso-settings.json? If so, set the passwords as plain text and see if it resolves the issue. Then follow the Help Center to re-encrypt the passwords if needed.

Best,

Tony