Forum Discussion
Microsoft Defender for Identity Deployment error code 0x80070643
Microsofthemdan875
The sensor is blocked from communicating with the azure backend.
Do you need a proxy to get there?
Did you install the sensor in silent mode with proxy parameters?
by any chance is SSL inspection taking place ?
Any FW config that will block the process from communicating out?
yesterday we started to install the "Azure ATP Sensor" on all our 12 DCc. On six of them that worked fine and straight forward. On the other six the installation fails with error 0x80070643.
The MS.Tri.Sensor.Deployment.Deployer.xxx.log shows an error HttpResponseMessageExtension and that two way SSL connection service failed.
We do not use any proxy and the DCs are similar configured as the other six.
I tried to install in system context by using psexec from sysinternals with no success (neither silent or in cmd).
I stopped any firewall settings before next try of installation with no success.
Any further ideas?
Any help is appreciated
Thanks in advance
Bernd
- EliOfek
behodil I suggest to open a support case for this one.
If you verified that there is no SSL inspection in place and no other configuration that might have messed with the certificates, the odds of troubleshooting it hear are slim.
I suggest to attach to the ticket all the deployment logs, not just the one you mentioned.
I would also attach the logs from a working instance for comparison if those are still available.
In those cases most likely the machine are not completely identical from configuration aspect, event though they are perceived to be, we often run into GPOs that people were not aware of,
3rds that were installed etc.
But support will be able to help most when sharing files with them securely.