Forum Discussion
dealsv
Feb 20, 2022Copper Contributor
Azure MSIX app attach
Hello,
we have the following problem. We have created a hostpool with a VM which is joined to our on prem domain. Furthermore we created a storage account which is also joined to our on prem domain. The filshare can be mounted on the VM and can be used. However, when dropping a .vhd file and trying to attach it to the Host Pool as an MSIX package, an error occurs that no MSIX packages were found on that path.
According to Github this error message could be caused by too few permissions.
Which permissions must be set for user and VM?
Thanks a lot
we have the following problem. We have created a hostpool with a VM which is joined to our on prem domain. Furthermore we created a storage account which is also joined to our on prem domain. The filshare can be mounted on the VM and can be used. However, when dropping a .vhd file and trying to attach it to the Host Pool as an MSIX package, an error occurs that no MSIX packages were found on that path.
According to Github this error message could be caused by too few permissions.
Which permissions must be set for user and VM?
Thanks a lot
- Solution:
The computer accounts need to be added to a group which is synchronized to Azure AD. This group needs the rights "Storage File Data SMB Share Contributer" and "Storage File Data SMB Share Elevated Contributer". The .pfx file used for the MSIX package needs to be added under Trusted Root Certification Authorities.
This has solved all my problems
- Johan_VanneuvilleIron Contributordo your session hosts have read access on the fileshare where the MSIX packages are located?
- dealsvCopper Contributoryes, the session host is part of "Storage File Data SMB Share Contributor"
- Johan_VanneuvilleIron Contributoris the .vhd file in the file share or the MSIX package that you created?
- kdjones03Copper ContributorI'm having the same problem and also looking for a solution. Some VHDs work and others don't. No real error message appears.
- dealsvCopper ContributorSolution:
The computer accounts need to be added to a group which is synchronized to Azure AD. This group needs the rights "Storage File Data SMB Share Contributer" and "Storage File Data SMB Share Elevated Contributer". The .pfx file used for the MSIX package needs to be added under Trusted Root Certification Authorities.
This has solved all my problems - kdjones03Copper ContributorI realized my error by looking at the certificates. The cert needs to be in the "Trusted Peoples" cert store for MSIX app attach to work.