![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(134.4, 49%, 23%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EEC%3C/text%3E%3C/svg%3E)
Azure Event Hubs
An Azure real-time data ingestion service.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(179.20000000000002, 13%, 27%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EPV%3C/text%3E%3C/svg%3E)
Hello Eric Cobb,
Thank you for posting your question on the Microsoft Q&A portal.
I understood the issue as the Event Processor is failing CBS token authentication while attempting to claim partition ownership in your Event Hub, which typically points to credential or network-related problems.
This error often occurs when the authentication credentials are invalid, expired, or lack the necessary permissions. It could be due to an incorrect connection string, an Entra ID (Azure AD) token issue, network restrictions like firewalls blocking the authentication flow, or even clock skew on the client machine. I recommend starting by verifying the connection string or Entra ID (Azure AD) credentials used by your tech partner, ensuring they have the correct permissions (e.g., Listen or Manage rights) for the Event Hub and consumer group. Also, check if any network rules or private endpoints are configured that might be blocking access.
Let me know if you need detailed steps on the above-mentioned steps.
To help pinpoint the root cause, could you share more details? For example, what authentication method are they using (SAS connection string or Entra ID (Azure AD)), is the Event Hub namespace set up with public access or private endpoints, and have there been any recent changes to keys or roles? Additionally, confirming the client SDK version and checking for clock sync issues might be useful.
Additional Considerations
The error mentions load-balancing and claiming ownership, which suggests this is part of a consumer group scenario. Verify that the consumer group '$Default' exists and that there aren't multiple competing consumers causing conflicts during the partition ownership claims.
You can share the above details leveraging the private message for this thread.
For further guidance, you can refer to these resources:
- Event Hubs authentication overview: https://learn.microsoft.com/azure/event-hubs/authenticate-application
- Managing connection strings: https://learn.microsoft.com/azure/event-hubs/event-hubs-get-connection-string
If you provide more context, I can offer more tailored advice. Thanks again for reaching out!
Please "Accept as Answer" if the answer provided is useful, so that you can help others in the community looking for remediation for similar issues.
Thanks
Pratyush