Getting Data In
×

Are you a member of the Splunk Community?

Sign in or Register with your Splunk account to get your questions answered, access valuable resources and connect with experts!
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Ask a Question

How can I fix MS Cloud Services TA Auth error?

pbarbuto
Path Finder
‎04-02-2020 08:45 AM

We migrated the MSCS TA to a new HF and are receiving authentication errors even though we're using the same client id, secret, and tenant id. I'm thinking its likely something network related and the auth error is misleading. I'm trying to find out exactly what URL(s) I need to whitelist - I cant find anything in the docs.

Here is the error: "REST Error [400]: Bad Request -- Account authentication failed. Please check your credentials and try again".

Like I said, I am using the same credentials, just a different host.

Thanks.

0 Karma
Reply

merrelr
Path Finder
‎05-06-2023 02:26 AM

I had the same issue setting up an Azure App Account. Turns out it was due to having

mgmtHostPort = 0.0.0.0:8089

vs the default of

mgmtHostPort = 127.0.0.1:8089

in web.conf/[settings].

0 Karma
Reply

jconger
Splunk Employee
Splunk Employee
‎04-02-2020 08:50 AM

How did you migrate? If it was a file copy rather than a new installation, your client secret may not decrypt correctly if your splunk.secret file is not the same.

0 Karma
Reply

pbarbuto
Path Finder
‎04-02-2020 08:57 AM

Its not a file copy. Its a new install of the TA on a different host. I didnt copy any of the files, just recreating the configs and inputs on the new host using the same credentials and authentication details.

0 Karma
Reply

mnajeeb93
Engager
‎04-06-2021 03:59 PM

Where you able to resolve this problem? I am facing the same issue. 

0 Karma
Reply
Career Survey
First 500 qualified respondents will receive a $20 gift card! Tell us about your professional Splunk journey.
Take the Survey

Can’t make it to .conf25? Join us online!

Watch Global Broadcast
Get Updates on the Splunk Community!

Community Content Calendar, September edition

Welcome to another insightful post from our Community Content Calendar! We're thrilled to continue bringing ...

Splunkbase Unveils New App Listing Management Public Preview

Splunkbase Unveils New App Listing Management Public PreviewWe're thrilled to announce the public preview of ...

Leveraging Automated Threat Analysis Across the Splunk Ecosystem

Are you leveraging automation to its fullest potential in your threat detection strategy?Our upcoming Security ...