I am having a persistent issue trying to start an unattended job via the Orchestrator API. Every attempt to get an authentication token from https://account.uipath.com/oauth/token fails with a 401 Unauthorized ("access_denied") error.
I have spent many hours troubleshooting this and have confirmed it is not a configuration error on my side.
My Setup:
Orchestrator: Community Cloud (https://cloud.uipath.com/omlet/DefaultTenant)
Goal: Start a process named [Snooze] in my “Shared” folder using a Python script.
Robot: The unattended robot is set up correctly, installed in Service Mode, and can run the job successfully when started manually from the Orchestrator website.
Troubleshooting Steps Taken:
I have tried two different methods to get API credentials, and both have failed with the same 401 error:
External Application Credentials:
Created a new application in Admin > External Applications.
Gave it Confidential Application type.
Assigned scopes: OR.Jobs, OR.Execution, and OR.Robots.
Used the generated Application ID and Application Secret for the client_id and client_secret.
Result:401 Unauthorized error.
Machine Template Credentials:
Navigated to Tenant > Machines and edited my Machine Template.
Used the Client ID / Machine key and a newly generated Client Secret from the machine’s Authentication details.
Result:401 Unauthorized error.
Final Proof:
I have confirmed this failure is not related to my script by testing both sets of credentials directly in Postman. In all cases, the request to the OAuth token endpoint returns a 401 Unauthorized error.
It appears there is an issue with the authentication service for my specific tenant that is preventing any API credentials from being validated. Could someone from the UiPath team please investigate my cloud tenant’s backend configuration?
The issue is not on your side. It looks like the tenant’s authentication backend may be misconfigured or broken, preventing any API credentials from being validated.
Thank you for the suggestion. I have double-checked the application scopes and can confirm they are set correctly. I have assigned OR.Jobs, OR.Execution, and OR.Robots.
Please see the attached screenshot.
The 401 Unauthorized error still persists even with these scopes, and the issue is present even when testing directly in Postman.
Thank you so much! You were absolutely right. The URL was the key to solving my 401 Unauthorized error. My authentication was failing because I was using the generic account.uipath.com endpoint.
After I changed the URL to https://cloud.uipath.com/{your_org_name}/identity_/connect/token as you suggested, I was able to connect.
For anyone else facing this, I also had to make two other changes in Postman to fix the 400 Bad Request errors that followed:
The request method must be POST.
The Body type must be x-www-form-urlencoded, not raw JSON.
I had to remove the scope parameter from the request body.
After those changes, I finally received a successful 200 OK and an access token.
