Connect-AipService

AT 0 Reputation points
2024-06-27T14:48:22.9833333+00:00

Im having an issue where on powershell when I run the command "connect-aipservice" I then input the correct credential and 2fa code but every time I enter it, I get the following error " Connect-AipService : The attempt to connect to the Azure Information Protection service failed. Verify that the

credentials you are using are correct and try again. If you have continued problems, see

http://go.microsoft.com/fwlink/?LinkId=251909.

The correlation ID is . Please note and provide this value if asked by support for

it.

At line:1 char:1

  • Connect-AipService
  • 
        + CategoryInfo          : NotSpecified: (:) [Connect-AipService], ApplicationFailedException
    
        + FullyQualifiedErrorId : NotSpecified,Microsoft.RightsManagementServices.Online.Admin.PowerShell.ConnectAipServic
    
       eCommand " 
    
    

The account has global admin roles and has microsoft 365 business basic license

I have used the same credentials to sign in on office 365.

Azure Information Protection
Azure Information Protection
An Azure service that is used to control and help secure email, documents, and sensitive data that are shared outside the company.
527 questions
Microsoft Purview
Microsoft Purview
A Microsoft data governance service that helps manage and govern on-premises, multicloud, and software-as-a-service data. Previously known as Azure Purview.
1,063 questions
PowerShell
PowerShell
A family of Microsoft task automation and configuration management frameworks consisting of a command-line shell and associated scripting language.
2,324 questions
0 comments No comments
{count} votes

2 answers

Sort by: Most helpful
  1. Sina Salam 7,286 Reputation points
    2024-06-27T16:47:13.29+00:00

    Hello AT,

    Welcome to the Microsoft Q&A and thank you for posting your questions here.

    Problem

    I understand that you are facing an issue with connecting to the Azure Information Protection (AIP) service using PowerShell.

    Solution

    Regarding your explanation, you can follow these troubleshooting steps and alternative methods:

    # Ensure you have the latest version of the Azure Information Protection module installed
    Install-Module -Name AIPService -Force
    # Check your PowerShell version
    $psVersion = $PSVersionTable.PSVersion
    Write-Output "PowerShell Version: $psVersion"
    # Check your internet connection and configure proxy if necessary
    # Uncomment and configure the following line if you are using a proxy
    # [System.Net.WebRequest]::DefaultWebProxy = New-Object System.Net.WebProxy("http://yourproxy:8080")
    # Verify that the credentials are correct by logging into the Azure portal
    Start-Process "https://portal.azure.com/"
    # Attempt to connect to the Azure Information Protection service
    try {
        Connect-AipService
    } catch {
        Write-Output "Connection failed. Ensure your credentials and 2FA code are correct."
        # If using Multi-Factor Authentication, ensure there are no issues with your authentication app or method
        Write-Output "Check your MFA settings and re-configure if necessary."
        # Check for any Conditional Access Policies in Azure AD that might be blocking the connection
        Write-Output "Review Conditional Access Policies in Azure AD."
        # If connection continues to fail, consider using a Service Principal
        Write-Output "Attempting to use a Service Principal for authentication..."
        # Create a Service Principal
        $servicePrincipal = New-AzADServicePrincipal -DisplayName "AIPServiceSP"
        Write-Output "Service Principal Created: $servicePrincipal"
        # Get the Service Principal credentials (replace 'yourPassword' with an actual password)
        $spCredentials = New-Object -TypeName Microsoft.Azure.Commands.ActiveDirectory.PSADPasswordCredential
        $spCredentials.Password = "yourPassword"
        Write-Output "Service Principal Credentials Set."
        # Connect using the Service Principal (replace 'CertificateThumbprint' with actual thumbprint if using a certificate)
        Connect-AipService -ServicePrincipalName $servicePrincipal.ApplicationId -CertificateThumbprint $spCredentials.Thumbprint
        Write-Output "Connected using Service Principal."
    }
    # Check logs for more detailed error messages
    Get-EventLog -LogName "Application" -EntryType "Error" -Newest 10 | Format-List
    # If none of the above steps work, contact Microsoft Support and provide the correlation ID from the error message
    Write-Output "If the issue persists, contact Microsoft Support and provide the correlation ID from the error message."
    

    Check the comment to see and run each function at a time.

    Accept Answer

    I hope this is helpful! Do not hesitate to let me know if you have any other questions.

    ** Please don't forget to close up the thread here by upvoting and accept it as an answer if it is helpful ** so that others in the community facing similar issues can easily find the solution.

    Best Regards,

    Sina Salam

    0 comments No comments

  2. Marilee Turscak-MSFT 36,411 Reputation points Microsoft Employee
    2024-06-28T20:15:37.5466667+00:00

    Hi @AT ,

    To add to Sina's answer, one common reason for this failure is due to the use of incorrect Powershell versions. Our AIP service PowerShell module, AIPService, only supports running on Windows PowerShell. There is a version of PowerShell that runs on Macs, Linux, etc., but our module does not support that version.

    User's image

    Ensure also that you are running the command in an elevated command prompt.

    If you still face the error, I would recommend logging into the portal with the same credentials and seeing if you encounter any issues there.

    If the information helped you, please Accept the answer. This will help us as well as others in the community who may be researching similar questions.

    0 comments No comments