Forum Discussion
Error installing Azure ATP Sensor on DC
JTUKTECH Proxy was the issue.
I followed these steps https://docs.microsoft.com/en-us/azure-advanced-threat-protection/configure-proxy#configure-the-proxy and finally it fixed couple of weeks back.
Microsoftmaple85 The key error in the log says
"failed two way SSL connection to service. The issue can be caused by a proxy with SSL inspection enabled. [_workspaceApplicationSensorApiEndpoint=Unspecified/constantiaindustriessensorapi.atp.azure.com:443 Thumbprint="
So most likely either you do have ssl inspection you are not aware of, os something else is in the middle breaking the TLS session. Hard to say what without having a stable repro.
- Is SSL Inspection explicitly forbidden?
- EliOfekYes, SSL Inspection is not supported due to mutual authentication.
Hi,
thanks for your answer!
I saw this with SSL inspection but fact is that I installed the sensor with the same setup 2 month ago.
Also on my 2nd Domain Controller on the same Network everything is fine.
That´s why i can´t understand why it is suddenly not working.
Problem began with automatically stopped service. First restart of the service helped but on one point it doesn´t . So i decided to reinstall the sensor but with no luck.edit: also auto update on this DC to new version did not work.
on 2nd DC no problem.
- EliOfek
maple85 try to capture a network trace to see where it fails.
Tip: I saw a case earlier this week where the client had issues with CRL. could it be that this machine does not have updated crl while the other has so it fails ?
If not, a network trace should tell you more, but it has to be something environmental...
