Jun 21 2021 11:28 PM
Hi All,
I'm getting stuck in below issues to test AIP Scanner.
Error
Set-AIPAuthentication :
As I worked through below the steps I had faced the following issue and cannot move forward.
or
https://alberthoitingh.com/2020/07/21/azure-information-protection-scanner-2/
I have done these steps
Install-AIPScanner -SqlServerInstance AIPSCANNER\SQLEXPRESS -Profile Cluster1
$pscreds = Get-Credential "testingtenant101.onmicrosoft.com\aipscanner"
Set-AIPAuthentication
-AppId "bac7ce5e-7a0b-40da-bb89-888888888"
-AppSecret "6192e5b8-afb0-49bc-9a0e-888888888"
-TenantId "623c0945-6ee5-42a1-8894-888888888"
-DelegatedUser aipscanner@testing.onmicrosoft.com -OnBehalfOf $pscreds
I think something wrong in authentication on-premise to azure (-DelegatedUser). Please kindly help me to move forward.
Jan 13 2022 08:42 AM
Jan 28 2022 05:36 AM
Try with the Onpremise account for the OnBehalfOf.
$pscreds = Get-Credential "<local domain>\aipscanner"
Dec 13 2022 01:15 PM
Apr 19 2023 03:43 AM
Jul 13 2023 08:38 AM
Aug 10 2023 11:31 AM
were you able to resolve this issue? I've done the following and no luck:
Any information or guidance would be appreciated.
Aug 10 2023 11:34 AM
Aug 11 2023 01:51 AM
Aug 11 2023 02:13 AM
I ran into this exact issue this week with another scanner and Microsoft provided me with that registry key which solved my issue.
Aug 16 2023 12:24 PM
Aug 16 2023 12:24 PM
Aug 31 2023 09:43 AM
Hi, how are you? @andrevrodrigues
Were you able to resolve this? I have the same issue:
This is the error message I'm getting:
PS C:\Users\*****> Start-AIPScannerDiagnostics
Scanner information:
SQL server: *******.
Cluster: *******.
Scanner user: *******
Connectivity check for: https://login.windows.net/common completed successfully
Connectivity check for: https://dataservice.protection.outlook.com completed successfully
Connectivity check for: https://api.aadrm.com/ completed successfully
Invalid database schema or cannot access the scanner DB. To update the database schema, run Update-AIPScanner. Make sure all nodes run the same AIP client version.
SQL error: Message The database owner SID recorded in the master database differs from the database owner SID recorded in database ‘*******'. You should correct this situation by resetting the owner of database *********' using the ALTER AUTHORIZATION statement.
TokenCache is missing for ***\****. Scanner authentication failed or was reset. Run Set-AIPAuthentication (using OnBehalfOf Parameter if needed) to acquire the authentication token. Learn more at: https://docs.microsoft.com/en-us/powershell/module/azureinformationprotection/set-aipauthentication?...
Sep 19 2023 08:08 AM
Sep 19 2023 08:13 AM
Sep 19 2023 08:59 AM
Oct 25 2023 02:05 AM
Oct 25 2023 03:18 AM - edited Oct 25 2023 06:38 AM
@mykhan In my case, I recreated the secret in the app registration and it worked. I don't know if there was a copy/paste error in the original, but it is working now. If you haven't already, please check your settings using this guide: - https://learn.microsoft.com/en-gb/azure/information-protection/rms-client/clientv2-admin-guide-power....
Oct 25 2023 06:33 AM
Oct 25 2023 06:37 AM
@JXG2300the only thing I can think of that would cause this would be the server was rebooted or patched afterwards. I rebooted my server and it was still doing it.