46,273 questions
Getting this error. I see that Azure has the right permissions
SCCM_AZUREAD_DISCOVERY_AGENT
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(198.4, 96%, 29%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ETS%3C/text%3E%3C/svg%3E)
Tyson Schuller
1
Reputation point
Azure AD Discovery agent does not have permission to access Azure active directory and will retry at next interval. Please check that Azure AD application is properly configured. Insufficient privileges to complete the operation..
Community Center | Not monitored
2 answers
Sort by: Most helpful
-
-
Amandayou-MSFT 11,156 Reputation points2022-08-16T08:38:40.28+00:00 Hi @Tyson Schuller ,
Use the SMS_AZUREAD_DISCOVERY_AGENT.log for troubleshooting. This log is also shared with Azure AD user discovery.
Besides, to check if enable discovery on an existing Cloud Management Azure service, please check the following article:
https://learn.microsoft.com/en-us/mem/configmgr/core/servers/deploy/configure/configure-discovery-methods#enable-azure-ad-user-group-discovery
If the answer is the right solution, please click "Accept Answer" and kindly upvote it. If you have extra questions about this answer, please click "Comment".
Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.