I’ve spent hours trying to figure out why 401 Unauthorized appears on /api/v2/auth/accesstoken when JMeter hits 100 concurrent threads from Singapore. The tokens expire instantly instead of the standard duration. Is there a security throttle on auth endpoints during high concurrency?