(Entra Application Proxy Error) Private Network settings: Application operation failed

Mecken Swyter 25 Reputation points
2024-11-24T23:56:02.35+00:00

Can anyone offer any suggestions on how I can get some additional information as to why I am receiving this error when attempting to configure an Enterprise Application to use on-premises Entra Application proxy?

I was initially having issues getting App Proxy to work at all, and I eventually found a link to an App proxy FAQ that stated you need to use your original .onmicrosoft.com domain with App Proxy. It just so happens that I was was using a different .onmicrosoft.com as my fallback from the one I initially setup with the tenant. So I changed it back to the original, but now I get this error whenever I try to create an App Proxy URL in an Enterprise app. And now I get the error regardless of the .onmicrosoft.com domain I'm using as my fallback.

I was just curious if there were some additional methods of debugging this. I'm not seeing anything obvious in the Event logs on the machines hosting the connecters, and there isn't anything revealing (to me) in the Entra audit logs.

Microsoft Entra Private Access
Microsoft Entra Private Access
Microsoft Entra Private Access provides secure and deep identity-aware, Zero Trust network access to all private apps and resources.
68 questions
Microsoft Entra ID
Microsoft Entra ID
A Microsoft Entra identity service that provides identity management and access control capabilities. Replaces Azure Active Directory.
22,419 questions
0 comments No comments
{count} votes

Accepted answer
  1. Raja Pothuraju 8,970 Reputation points Microsoft Vendor
    2024-11-29T10:38:48.6733333+00:00

    Hello @Mecken Swyter,

    Thank you for posting your query on Microsoft Q&A.

    Based on your description, it seems you're encountering the error "Private Network settings: Application operation failed" while creating an on-premises application proxy in Entra ID. You mentioned that you have replaced the initial onmicrosoft.com fallback domain of your tenant in Microsoft 365.

    User's image

    Yes, your understanding of the issue as described in the App Proxy FAQ document is correct. You can refer to the document here:

    User's image

    Microsoft Entra Application Proxy FAQ

    As you stated, I understand that you've reverted to the original fallback domain, but the error persists when configuring an App Proxy application. Please let me know if this understanding is incorrect.

    To resolve this issue:

    1. Ensure that you are using the original fallback domain.
    2. Navigate to Microsoft Entra ID > Application Proxy > Configure an app.
    3. Expand the External URL domain list and select your initial onmicrosoft.com domain from the options. Avoid selecting any domain that includes xxxx.msappproxy.net.

    User's image

    I hope this information is helpful. Please feel free to reach out if you have any further questions.

    If the answer is helpful, please click "Accept Answer" and kindly upvote it. If you have extra questions about this answer, please click "Comment".

    Thanks,
    Raja Pothuraju.


0 additional answers

Sort by: Most helpful

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.