cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
SOLVED

401 Error using PnP PowerShell in Azure Runbooks

Deleted
Not applicable

‎Mar 19 2021 02:50 AM - edited ‎Mar 19 2021 03:59 AM

‎Mar 19 2021 02:50 AM - edited ‎Mar 19 2021 03:59 AM

401 Error using PnP PowerShell in Azure Runbooks

Trying to get PnP PowerShell cmdlets to work within an Azure Runbook with modern authentication (no username/password).

 

I tried registering an Azure AD app and a Service Principal (Run as account) from the automation account that hosts the Runbook. Both use a certificate thumbprint and authorization itself doesn't throw an error. Here's the code I'm using:

 

 

 

 

$connection = Get-AutomationConnection –Name "AzureRunAsConnection"
$tenant = '[tenant].onmicrosoft.com'
$url = 'https://[tenant].sharepoint.com/sites/test'

Connect-PnPOnline -Url $url –Thumbprint $connection.CertificateThumbprint –ClientId $connection.ApplicationID -Tenant $tenant

 

 

 

 

For every PnP cmdlet this throws the following error.

 

 

 

 

Get-PnPTenantSite : The remote server returned an error: (401) Unauthorized.
At line:7 char:1
+ Get-PnPTenantSite
+ ~~~~~~~~~~~~~~~~~
    + CategoryInfo          : NotSpecified: (:) [Get-PnPTenantSite], WebException
    + FullyQualifiedErrorId : System.Net.WebException,PnP.PowerShell.Commands.GetTenantSite

 

 

 

 

I have also updated the cmdlets from SharePointPnPPowerShellOnline to the newest PnP.PowerShell.

Furthermore, the Azure app and service principal are members of the SharePoint administrators group.

 

When I attempt to reproduce the issue on a local machine I get the same 401 error.

 

Any ideas?

 

Thanks!

5,892 Views
0 Likes
3 Replies
Reply
3 Replies
Paul Bullock

‎Mar 25 2021 02:12 PM

‎Mar 25 2021 02:12 PM

Re: 401 Error using PnP PowerShell in Azure Runbooks

Hi, I am not tried that approach before, but I created a sample in the PnP.PowerShell for setting up with Azure Automation with certificates as an alternative approach: https://github.com/pnp/powershell/tree/dev/samples/Connect.AzureAutomation

Of course, pls post here if you find the answer, interested in learning new approaches
0 Likes
Reply
TomTVDL

‎Apr 20 2021 01:39 AM

‎Apr 20 2021 01:39 AM

Re: 401 Error using PnP PowerShell in Azure Runbooks

Hi,
were you able to find a fix for the problem?
I have the same issue, when trying to authenticate with certificates, authentication doesn't throw any error, but any action afterwards does. The same 401 error as yourself.
I'm certain it's not a matter of the app registration not having enough permissions, since when I use a different authentication method, everything goes fine.
0 Likes
Reply
best response
Paul Bullock

‎Apr 20 2021 01:54 AM

‎Apr 20 2021 01:54 AM

Solution

Re: 401 Error using PnP PowerShell in Azure Runbooks

Hi,

I have recent presented at the Scottish summit an example of setting this up in Azure Automation using certificates: https://youtu.be/8qsnhfSilic?t=1234 (i've skipped the intro parts gone straight to the demo)

Hope this helps.

Paul
0 Likes
Reply
1 best response

Accepted Solutions
best response
Paul Bullock

‎Apr 20 2021 01:54 AM

‎Apr 20 2021 01:54 AM

Solution

Re: 401 Error using PnP PowerShell in Azure Runbooks

Hi,

I have recent presented at the Scottish summit an example of setting this up in Azure Automation using certificates: https://youtu.be/8qsnhfSilic?t=1234 (i've skipped the intro parts gone straight to the demo)

Hope this helps.

Paul

View solution in original post

0 Likes
Reply