After upgrading the MFA agent, the windows console authentication fails with the error "cannot authenticate. Contact your administrator" as shown in the below screenshot. However, the login from the Remote Desktop Protocol (RDP) is working as desired. From the RDP the user can authenticate successfully and log in to the machine.
![]()
The below is displayed in the MFA agent verbose logs
2021-10-06 09:12:46.734 860.1 [V] [CredentialProviderCredentialEvents2Proxy.EndFieldUpdates] Return
2021-10-06 09:12:46.734 860.1 [V] [RSA.Authentication.CredentialProvider.CASCredential.GetPasswordCredentials] Return
2021-10-06 09:12:46.765 860.1 [V] [Credential.GetSerialization]
----------
Method:
ICredentialProviderCredential::GetSerialization(CREDENTIAL_PROVIDER_GET_SERIALIZATION_RESPONSE * pcpgsr, CREDENTIAL_PROVIDER_CREDENTIAL_SERIALIZATION * pcpcs, PWSTR * ppwszOptionalStatusText, CREDENTIAL_PROVIDER_STATUS_ICON * pcpsiOptionalStatusIcon)
Result:
S_OK
Output:
*pcpgsr = CPGSR_NO_CREDENTIAL_NOT_FINISHED
*pcpcs->ulAuthenticationPackage = 0
*pcpcs->clsidCredentialProvider = {00000000-0000-0000-0000-000000000000}
*pcpcs->cbSerialization = 0
*pcpcs->rgbSerialization = ***************
*ppwszOptionalStatusText = Cannot authenticate. Contact your administrator.
*pcpsiOptionalStatusIcon = CPSI_ERROR
Restarting the machine will update the CredProvider in Logonui .After the restart the console authentication should work as desired