Share via

An error occured executing configure AAD Sync : An error occured while sending the request

Hazeeq AR 5 Reputation points
2024-08-27T07:19:29.3366667+00:00

aadsync

I am getting the above error while trying to install Microsoft AAD Connect on a vmware VM Windows Server 2019 Datacenter Evaluation. This VM acts as a DC for a test active directory. I would like to connect this to entra ID so I may test on configuring passwordless authentication for users.

I have checked possible troubleshooting steps online such as enabling tls 1.2 , making sure firewall is not blocking connections to azure URL's and that there is no proxy blocking such connection. However, the error still persists. I have also attached the latest logs obtained.

On Azure Entra ID, I can see that the AD Sync Service Account has been created.

User's image

The trace logs are attached below. The first occurence of error is as shown:

[02:23:01.605] [ 55] [ERROR] Unable to get value for Microsoft.OptionalFeature.EnableAutoUpgrade global parameter.

[02:23:01.629] [ 55] [INFO ] SyncDataProvider:LoadSettings - retrieving connector from the sync engine.

[02:23:02.773] [ 55] [INFO ] ConfigureAADSyncTask.CreateNewConnectors [Azure]: Pre-creating the Azure connector with retryOnFailure: true.

Exception Data (Raw): System.Management.Automation.CmdletInvocationException: An error occurred while sending the request. ---> Microsoft.IdentityManagement.PowerShell.ObjectModel.SynchronizationConfigurationValidationException: An error occurred while sending the request.

[02:23:07.816] [ 55] [ERROR] Creation of connector ********.onmicrosoft.com - AAD failed. This may be due to replication delay. Retrying after 5 seconds ...

AAD Connect.log

Windows for business | Windows Client for IT Pros | Directory services | Active Directory
Microsoft Security | Microsoft Entra | Microsoft Entra ID

1 answer

Sort by: Most helpful
Most helpful Newest Oldest
  1. Raja Pothuraju 43,660 Reputation points Microsoft External Staff Moderator
    2024-09-04T21:00:10.98+00:00

    Hello @Hazeeq AR,

    I'm glad that you were able to resolve your issue and thank you for posting your solution so that others experiencing the same thing can easily reference this! Since the Microsoft Q&A community has a policy that "The question author cannot accept their own answer. They can only accept answers by others ", I'll repost your solution in case you'd like to "Accept " the answer.

    Issue: An error occurred executing configure AAD Sync: An error occurred while sending the request

    Solution: After manually creating the TLS 1.2 Registry keys and after rebooting it resolved issues with installation. Below is the registry keys add manually to enable TLS 1.2.

    • [HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft.NETFramework\v4.0.30319]
      • "SystemDefaultTlsVersions"=dword:00000001
      • "SchUseStrongCrypto"=dword:0000001
    • [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft.NETFramework\v4.0.30319]
      • "SystemDefaultTlsVersions"=dword:00000001
      • "SchUseStrongCrypto"=dword:00000001
    • [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Protocols\TLS 1.2\Server]
      • "Enabled"=dword:00000001
    • [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Protocols\TLS 1.2\Server]
      • "DisabledByDefault"=dword:00000000
    • [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Protocols\TLS 1.2\Client]
      • "Enabled"=dword:00000001
    • [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Protocols\TLS 1.2\Client]
      • "DisabledByDefault"=dword:00000000

    Please remember to "Accept Answer" if any answer/reply helped, so that others in the community facing similar issues can easily find the solution.

    Thanks,
    Raja Pothuraju.

Your answer

Answers can be marked as 'Accepted' by the question author and 'Recommended' by moderators, which helps users know the answer solved the author's problem.