Forum Discussion
Registration Failure - Connectivity Issues
I've been able to get the sensor installed on a few DCs, but on others I just get the error "The Sensor failed to register due to connectivity issues." I don't see anything obviously different about the DCs where the install works and where I am getting this error. I've looked at the logs in AppData\Local\Temp and there aren't any errors there.
Does anyone know what it needs to be able to connect to in order for me to troubleshoot further?
9 Replies
- Hi Eric, Check the sensor log directory under c:\program files\azure advanced threat protection sensor.
The failure is before that folder is created, so no logs. I was able to get a couple more to run by watching the network. They needed an outbound rule added to allow HTTPS to 13.90.138.89. Are there any other IPs we need, or a way to tell the sensor to use a proxy?
Hi Eric, There is information about how to connect via a proxy in "What you will need to on board Azure ATP – a list of prerequisites" entry. Under "For the Azure ATP Sensors to communicate with Azure ATP cloud service" there are specific details on connectivity through a proxy.
Firewall/proxy open - For your Domain Controllers to communicate with the cloud service, you must have open: *.atp.azure.com port 443 in your firewall/proxy. The configuration needs to be at the machine level (=machine account) and not a user account. Note that you need to setup access to the DNS name not individual IP addresses as there are subject to change.
