Update-AzureADSSOForest return error

Question

Update-AzureADSSOForest return error

Donb_21 0

getting error when updating seamless sso key on AD

[09:01:47.805] [ 12] [INFORMATIONAL] UpdateComputerAccount: Successfully updated SSO computer account properties.
Update-AzureADSSOForest : 发生一个或多个错误。
所在位置 行:1 字符: 1
+ Update-AzureADSSOForest
+ ~~~~~~~~~~~~~~~~~~~~~~~
    + CategoryInfo          : NotSpecified: (:) [Update-AzureADSSOForest], AggregateException
    + FullyQualifiedErrorId : System.AggregateException,Microsoft.KerberosAuth.Powershell.PowershellCommands.UpdateAzureADSSOForestCommand

Shweta Mathur 30,296 Reputation points Microsoft Employee Moderator

2023-04-20T11:12:55.1866667+00:00

Hi @Donb_21 ,

Just checking in to see if the below answer helped. If this answers your query, please don’t forget to click "Accept Answer" which might be beneficial to other community members reading this thread. And, if you have any further query do let us know.
Marilee Turscak-MSFT 37,206 Reputation points Microsoft Employee Moderator

2023-05-02T17:47:15.47+00:00

Hi Donb_21, Just checking to see if you were able to get the information you need? If the answer was helpful to you, please Accept the answer. This will help us as well as others in the community who may be researching similar information. Otherwise let me know if you have further questions.

1 answer

Your answer

Shweta Mathur 30,296 Reputation points Microsoft Employee Moderator

2023-04-20T11:12:55.1866667+00:00

Hi @Donb_21 ,

Just checking in to see if the below answer helped. If this answers your query, please don’t forget to click "Accept Answer" which might be beneficial to other community members reading this thread. And, if you have any further query do let us know.
Marilee Turscak-MSFT 37,206 Reputation points Microsoft Employee Moderator

2023-05-02T17:47:15.47+00:00

Hi Donb_21, Just checking to see if you were able to get the information you need? If the answer was helpful to you, please Accept the answer. This will help us as well as others in the community who may be researching similar information. Otherwise let me know if you have further questions.

Answer 1

Hi @Donb_21 ,

The error you mentioned can happen if TLS 1.2 is not enabled, since TLS 1.2 is now enforced by Azure. If this is the case, you need to make sure you run the following command prior to running Update-AzureADSSOForest:

[Net.ServicePointManager]::SecurityProtocol = [Net.SecurityProtocolType]::Tls12

See full steps for enabling TLS 1.2 on the server.

One solution I have also seen for that error is to copy the %programfiles%\Microsoft Azure Active Directory Connect folder to a non-server 2016 machine.

In addition, I would make sure that the account has the necessary permissions.

I would recommend checking the troubleshooting article here, since it is difficult to diagnose this based on the information provided.

If these steps do not work, it would help if you could provide more details about your scenario and any additional errors you receive so that I can better troubleshoot your exact issue.

If the information helped point you in the right direction, please Accept the answer. This will help us as well as others in the community who might be researching similar issues.

Share via

Update-AzureADSSOForest return error

1 answer

Your answer