Share via

Connection to data plane failed when i access it from my office network, even though we have S2S tunnel

Karthik Putta 0 Reputation points
2024-09-20T15:20:01.66+00:00

getting below error, when tried to access azure key vault objects

The connection to data plane failed. Please refresh and try again. If Private Links are enabled on the vault and the issue persists please follow the steps in the following link https://go.microsoft.com/fwlink/?linkid=2156688

Below is the error logs from browser

Z8BxXysSUZUb.js:1 [Microsoft_Azure_KeyVault] 9:53:33 AM MsPortalFx.Base.Diagnostics.ErrorReporter 1 MsPortalFx.Base.Diagnostics.ErrorReporter: _errorData: {"readyState":0,"status":0,"statusText":"error"}

baseTypes: ["MsPortalFx.Errors.FetchDataError","MsPortalFx.Errors.DataError","MsPortalFx.Errors.Error"]

dataSetName: KeyResponse:DataCache:6:2

errorData: {"readyState":0,"status":0,"statusText":"error"}

errorLevel: 2

extension: Microsoft_Azure_KeyVault

innerErrors: []

message: FetchDataError: data set KeyResponse:DataCache:6:2

name: FetchDataError

stack: FetchDataError: FetchDataError: data set KeyResponse:DataCache:6:2

at n.t (https://portal.azure.com/Content/Dynamic/hsHQdjgh2OtB.js:57:857)

at n (https://portal.azure.com/Content/Dynamic/Z8BxXysSUZUb.js:1:45682)

at new n (https://portal.azure.com/Content/Dynamic/Z8BxXysSUZUb.js:1:45894)

at https://portal.azure.com/Content/Dynamic/Z8BxXysSUZUb.js:1:295691

at https://portal.azure.com/Content/Dynamic/Z8BxXysSUZUb.js:1:295794

timestamp: 27160.800000071526

type: MsPortalFx.Errors.FetchDataError

{error: {…}}error: {schemaVersion: 1, extractionType: 'FxErrorWithErrorData', message: 'error', name: 'error', httpStatusCode: 0, …}[[Prototype]]: Objectconstructor: ƒ Object()hasOwnProperty: ƒ hasOwnProperty()isPrototypeOf: ƒ isPrototypeOf()propertyIsEnumerable: ƒ propertyIsEnumerable()toLocaleString: ƒ toLocaleString()toString: ƒ toString()valueOf: ƒ valueOf()defineGetter: ƒ defineGetter()defineSetter: ƒ defineSetter()lookupGetter: ƒ lookupGetter()lookupSetter: ƒ lookupSetter()proto: (...)get proto: ƒ proto()set proto: ƒ proto()

a @ Z8BxXysSUZUb.js:1

log @ hsHQdjgh2OtB.js:58

y @ Z8BxXysSUZUb.js:1

t.error @ Z8BxXysSUZUb.js:1

f @ hsHQdjgh2OtB.js:183

(anonymous) @ hsHQdjgh2OtB.js:183

Azure Key Vault
Azure Key Vault
An Azure service that is used to manage and protect cryptographic keys and other secrets used by cloud apps and services.
1,293 questions
0 comments

1 answer

Sort by: Most helpful
Most helpful Newest Oldest
  1. Akhilesh Vallamkonda 9,840 Reputation points Microsoft Vendor
    2024-09-26T19:23:10.52+00:00

    Hi @Karthik Putta

    Thank you for post!

    The error message states that Firewall or VPN that are blocking your connectivity to the Key Vault's Data Plane Endpoint.
    May I know have you Integrate Key Vault with Azure Private Link if so, refer the document and check Establish a private link connection to an existing key vault and Validate that the private link connection.
    Please refer private links configuration issues on Azure Key Vault if you have any issues with the private link configuration.

    Since you mentioned that accessing from your office network it might be firewall rules that is blocking traffic to the Azure Key Vault. Check your firewall rules to make sure that traffic to the Azure Key Vault is not being blocked and check the connectivity between your client and the Azure Key Vault by using network diagnostic tool, such as ping or tracert.
    Also, verify with your admin that you in Azure AD VPN group.

    If you have connected the azure VPN client, after login to azure vpn client ran this command in the terminal: sudo dscacheutil -flushcache; sudo killall -HUP mDNSResponder Then refresh the azure key vault and see if the issue persisted.

    If you would like to access the key vault with the public IP, you need to add you public IP to Key Vault firewall.

    This error message can also be caused by a Tenant Mismatch - if you recently deployed your Key Vault to a subscription that contains a different Tenant ID, or the subscription that owned the KV was moved to a different Tenant. For more info - The connection to Data Plane Failed.

    In order to resolve a potential Tenant Mismatch issue, you can update your Key Vault's Tenant ID. For more info - Moving an Azure Key Vault to another subscription.

    Reference: https://learn.microsoft.com/en-us/azure/key-vault/general/private-link-service?tabs=portal#troubleshooting-guide

    Hope this helps. Do let us know if you any further queries by responding in the comments section.

    Thanks,

    Akhilesh.

    If this answers your query, do click Accept Answer and Yes for was this answer helpful. And, if you have any further query do let us know.

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.