To fix this, you must explicitly define a static <machineKey> in your application's Web.config file. This ensures that all instances of your web app use the same keys for encryption and decryption.