cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 

Sensor failing to install on Server Core on new Dcs

scottu1615
Copper Contributor

‎Apr 11 2024 02:29 AM

‎Apr 11 2024 02:29 AM

Sensor failing to install on Server Core on new Dcs

We have just migrated to new Server 2022 Core DCs. Identity was setup and working on old DCs fine, but we are getting this error when it installs. We have added the new DCs to the Msa Service Group.

 

We have configured the new DCs with the MSFT Security Baseline GPO for DCs, but we did this on a another domain and we didn't have issues installing the sensor.

 

Any ideas? This is the output from the MSIPackage log

 

MSI (s) (28:D8) [10:20:27:424]: Hello, I'm your 64bit Impersonated custom action server.
Action start 10:20:27: InstallCustomAction.
SFXCA: Extracting custom action to temporary directory: C:\Windows\Installer\MSIC4DE.tmp-\
SFXCA: Binding to CLR version v4.0.30319
Calling custom action Microsoft.Tri.Sensor.Deployment.Package.Actions!Microsoft.Tri.Sensor.Deployment.Package.Actions.CustomActions.Install
Error: could not load custom action class Microsoft.Tri.Sensor.Deployment.Package.Actions.CustomActions from assembly: Microsoft.Tri.Sensor.Deployment.Package.Actions
System.IO.FileLoadException: Could not load file or assembly 'Microsoft.Tri.Sensor.Deployment.Package.Actions' or one of its dependencies. Access is denied.
File name: 'Microsoft.Tri.Sensor.Deployment.Package.Actions'
at System.Reflection.RuntimeAssembly._nLoad(AssemblyName fileName, String codeBase, Evidence assemblySecurity, RuntimeAssembly locationHint, StackCrawlMark& stackMark, IntPtr pPrivHostBinder, Boolean throwOnFileNotFound, Boolean forIntrospection, Boolean suppressSecurityChecks)
at System.Reflection.RuntimeAssembly.InternalLoadAssemblyName(AssemblyName assemblyRef, Evidence assemblySecurity, RuntimeAssembly reqAssembly, StackCrawlMark& stackMark, IntPtr pPrivHostBinder, Boolean throwOnFileNotFound, Boolean forIntrospection, Boolean suppressSecurityChecks)
at System.Reflection.RuntimeAssembly.InternalLoad(String assemblyString, Evidence assemblySecurity, StackCrawlMark& stackMark, IntPtr pPrivHostBinder, Boolean forIntrospection)
at System.Reflection.RuntimeAssembly.InternalLoad(String assemblyString, Evidence assemblySecurity, StackCrawlMark& stackMark, Boolean forIntrospection)
at System.AppDomain.Load(String assemblyString)
at Microsoft.Deployment.WindowsInstaller.CustomActionProxy.GetCustomActionMethod(Session session, String assemblyName, String className, String methodName)

WRN: Assembly binding logging is turned OFF.
To enable assembly bind failure logging, set the registry value (DWORD) to 1.
Note: There is some performance penalty associated with assembly bind failure logging.
To turn this feature off, remove the registry value .

CustomAction InstallCustomAction returned actual error code 1603 (note this may not be 100% accurate if translation happened inside sandbox)

 

Using this command to install the sensor .\"Azure ATP sensor Setup.exe" /quiet NetFrameworkCommandLineArguments="/q" AccessKey=""

 

173 Views
0 Likes
1 Reply
Reply
1 Reply
scottu1615

‎Apr 11 2024 07:17 AM

‎Apr 11 2024 07:17 AM

Re: Sensor failing to install on Server Core on new Dcs

@scottu1615 Strange, I have just tried ago and the installer is working. Not sure how this was resolved, we did add in a Group Policy (Default Domain Controllers Policy) so must have been something to do with that.

0 Likes
Reply