Apr 11 2023 08:03 PM
Dear All,
We encounter an issue with update-azureadssoforest it prompt below errro, need help
Update-AzureADSSOForest : one or more error occurred。
所在位置 行:1 字符: 1
+ Update-AzureADSSOForest
+ ~~~~~~~~~~~~~~~~~~~~~~~
+ CategoryInfo : NotSpecified: (:) [Update-AzureADSSOForest], AggregateException
+ FullyQualifiedErrorId : System.AggregateException,Microsoft.KerberosAuth.Powershell.PowershellCommands.UpdateAzureADSSOForestCommand
Apr 11 2023 10:32 PM
Solution
Hi, Don.
I'd recommend reading the following two articles as there's not enough information in the error you've provided to guide us:
I've bookmarked the second article on the process for rotating the Kerberos decryption key as that's related to the first article, but you should probably read the whole article.
Also pay particular attention to the information call-outs (both articles have these call-outs) that discuss things to look out for in relation to the Active Directory domain administration account (included in the picture below for ease of reference) used with the call to Update-AzureADSSOForest, as not adhering to these will also result in a Kerberos error:
Cheers,
Lain
Apr 17 2023 08:19 PM
Apr 11 2023 10:32 PM
Solution
Hi, Don.
I'd recommend reading the following two articles as there's not enough information in the error you've provided to guide us:
I've bookmarked the second article on the process for rotating the Kerberos decryption key as that's related to the first article, but you should probably read the whole article.
Also pay particular attention to the information call-outs (both articles have these call-outs) that discuss things to look out for in relation to the Active Directory domain administration account (included in the picture below for ease of reference) used with the call to Update-AzureADSSOForest, as not adhering to these will also result in a Kerberos error:
Cheers,
Lain