Share via

Azure AD Connect link

Mark Green 1 Reputation point
2021-07-09T13:30:03.733+00:00

I am getting the following error whet trying to run AD connect provisioning Agent

Exception Data (Raw): System.AggregateException: A Task's exception(s) were not observed either by Waiting on the Task or accessing its Exception property. As a result, the unobserved exception was rethrown by the finalizer thread. ---> System.Net.Http.HttpRequestException: An error occurred while sending the request. ---> System.Net.WebException: The underlying connection was closed: Could not establish trust relationship for the SSL/TLS secure channel. ---> System.Security.Authentication.AuthenticationException: The remote certificate is invalid according to the validation procedure

Microsoft Security Microsoft Entra Microsoft Entra ID

1 answer

Sort by: Most helpful
Most helpful Newest Oldest
  1. Siva-kumar-selvaraj 15,721 Reputation points
    2021-07-12T11:06:34.137+00:00

    Hello @Mark Green ,

    Thanks for reaching out.

    Looking at above error, it seems that Azure AD connect could not establish SSL/TLS connection to Azure AD with new certificate which was created during installation.

    Kindly check if the DigiCert Global Root G2 and DigiCert Global Root CA certificates have been installed on your AAD Connect server, If already present then please make sure the thumbprints match as shown below:

    113858-image.png

    Here are list of Azure TLS certificate changes make sure these certificates are trusted by your AD connect server.

    In additional to that, you can also collect network trace to see if there any TLS handshake issue. Hope this helps.

    ------
    Please "Accept the answer" if the information helped you. This will help us and others in the community as well.

    1 person found this answer helpful.
    0 comments

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.