Microsoft Security | Intune | Other
Other Intune-related topics, including unsupported scenarios and platform-specific behaviors
looks like $(openssl rand 32 | base64) does work but now the upload fails to commit.
error: ProfileVersion1 requires an EncryptionKey that is 32 bytes long
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(86.4, 31%, 18%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EMD%3C/text%3E%3C/svg%3E)
Mattheis, Dirk
0
Reputation points
I have this json to commit a lob pkg:
{"fileEncryptionInfo": {"encryptionKey": "fea98d9079db2b08446d6163ca1cabb2","initializationVector": "22957e909d50f58f393333fd34cd1c70","mac": "4d3ce6bb050301cafd8f433e305640992832fcadf1d32d0138e7adb1412e8206","macKey": "d77b99406783d05f12ba1489da3340c2","profileIdentifier": "ProfileVersion1","fileDigest": "e6ca6fc13195b8e98b1a93ffdf08cd20f39b65afce48c287474653b8130f7cd9","fileDigestAlgorithm": "SHA256"}}
But I get this error:
ProfileVersion1 requires an EncryptionKey that is 32 bytes long. - Operation ID (for customer support): 00000000-0000-0000-0000-000000000000
Why is graph not accepting my enryption key?
Microsoft Security | Intune | Other
Microsoft Security | Microsoft Graph
Microsoft Security | Microsoft Graph
An API that connects multiple Microsoft services, enabling data access and automation across platforms
3 answers
Sort by: Most helpful
-
Mattheis, Dirk 0 Reputation points
2024-03-18T10:43:19.5433333+00:00 -
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(233.6, 30%, 32%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ECM%3C/text%3E%3C/svg%3E)
Crystal-MSFT 54,216 Reputation points Microsoft External Staff2024-03-19T05:24:17.68+00:00 @Mattheis, Dirk, Thanks for the reply. I notice the $(openssl rand 32 | base64) works. but the upload fails. You can open premier case to see if we can get mote help.
Sign in to comment -
-
Mattheis, Dirk 0 Reputation points
2024-03-18T09:57:24.9366667+00:00 Doesn't work with either, I tried strEncryptionKey=$(openssl rand -hex 16) and strEncryptionKey=$(openssl rand -hex 32), also tried strEncryptionKey=$(openssl rand -hex 16) | base64) and strEncryptionKey=$(openssl rand -hex 32 | base64). Also, when using x-graph and viewing the javascript logging, I see that the value is 44 bytes which seems to be 32 bytes in base64.
-
Crystal-MSFT 54,216 Reputation points Microsoft External Staff
2024-03-18T02:11:13.84+00:00 @Mattheis, Dirk, Thanks for posting in Q&A. From the error message, I find the error is caused that the EncryptionKey you provided is not 32 bytes long. Based on my researching, one byte is the range 00000000 - 11111111 in binary, or 0x00 - 0xFF in hex. As you can see, one byte is represented in hex as a 2 characters string. Therefore, a 32-byte hex string is 64 characters long.
In the json, I notice the "encryptionKey" is only 32 characters. Please increase it to 64 characters to see if it works.
Hope the above information can help.
If the answer is helpful, please click "Accept Answer" and kindly upvote it. If you have extra questions about this answer, please click "Comment".
Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.