diff --git a/src/Microsoft.AspNetCore.Authentication.Cookies/CookieAuthenticationHandler.cs b/src/Microsoft.AspNetCore.Authentication.Cookies/CookieAuthenticationHandler.cs
index 302010429b..9a26667aca 100644
--- a/src/Microsoft.AspNetCore.Authentication.Cookies/CookieAuthenticationHandler.cs
+++ b/src/Microsoft.AspNetCore.Authentication.Cookies/CookieAuthenticationHandler.cs
@@ -165,7 +165,7 @@ namespace Microsoft.AspNetCore.Authentication.Cookies
             }
 
             // REVIEW: Should this check if there was an error, and then if that error was already handled??
-            var ticket = (await HandleAuthenticateOnceAsync())?.Ticket;
+            var ticket = (await HandleAuthenticateOnceSafeAsync())?.Ticket;
             if (ticket != null)
             {
                 if (_refreshIssuedUtc.HasValue)