Configuring and installing the Azure Information Protection (AIP) unified labeling scanner

Question

I am attempting to set up my on-prem Azure Information Protection (AIP) unified labeling scanner using https://learn.microsoft.com/en-us/azure/information-protection/deploy-aip-scanner-configure-install?tabs=azure-portal-only#get-an-azure-ad-token-for-the-scanner for instruction and guidance. All is going well until I get to the point of Get an Azure AD token for the scanner. I go to create the app, and all documentation on any kind of instruction on what I need to do is severly outdated, then when I go to run: Set-AIPAuthentication -AppId <ID of the registered app> -AppSecret <client secret sting> -TenantId <your tenant ID> -DelegatedUser <Azure AD account> I am getting "Set-AIPAuthentication : Unable to authenticate and setup Microsoft Azure Information Protection." If anyone has any better up to date documentation on how to properly set everything up, I would really appreciate it being shared with me. This is a project I got assigned to do for our cyber security and it is the first time I have ever worked with AIP. I will say, this isn't the first project I have worked on using Microsoft documentation that was severely uninformative. Please help.

Answer 1

@Robert Semmelmann Thank you for reaching out to us, researched on your issue, found a similar issue discussed here https://stackoverflow.com/questions/64771339/powrshell-set-aipauthentication-returns-errorinvalid-client please check if these steps can help to resolve your issue or not.

In addition to this make sure all necessary url's are whitelisted and there is no proxy configuration from the system where you are running this setup.

if these steps doesnt help, let me know.