Skip to main content
My preferencesSign out
Proofpoint, Inc.

Azure AD Error's and Resolutions

Azure AD Error's and Resolutions

Situation This article will help you to resolve Azure AD error's or issues you may encounter.
Solution For each error you encounter this article will give you a description of the error you may see, along with a provided resolution step. 

Errors & Resolutions

1. All domains associated with your Azure AD directory must be added in order to perform a sync.

"The following domain(s) 'Domainproofpoint.com' has been found that is not currently associated with your customer account. All domains associated with your Azure AD directory must be added in order to perform a sync."

Error Message:

  • The following domain(s) 'Domainproofpoint.com' has been found that is not currently associated with your customer account. All domains associated with your Azure AD directory must be added in order to perform a sync.

Resolution:

  • You must ensure all associated domains within your Office 365 are added to the Proofpoint console.
  • Alternatively you can add the domains not associated with your customer account as Management rather than relay. Then re-run the sync.

2. Invalid Credentials

Invalid Credentials.PNG

Error Message:

  • Failed to connect. Please check your Azure credentials.

Resolution:

3. You have used up all of your current user licenses. In order to add additional licensed users you must contact your Reseller.

UserCapping.PNG

Error Message:

  • This organization has no additional user licenses available. The number of user licenses needs to be increased before additional user accounts can be added.
  • You have used up all of your current user licenses. In order to add additional licensed users you must contact your Reseller.

Resolution:

  • You must contact your re-seller to have your license count increased or user capping disabled

4. Token Invalid

InvalidToken.PNG

Error Message: 

  • The token does not appear to be correct. Please ensure this is valid.

Resolution:

  • If you see this error, there may be a 5- 10 minute propagation from Azure. Azure can sometimes see a delay in a new token between trusted applications. 
  • After 10 minutes, please re-generate a new token and ensure it is correctly copied into the PP Azure configuration. 
Note: Also ensure the following permissions are set correctly within Azure:
  • Application Permissions : Read Directory Data
  • Delegated Permissions : Read all users' basic profiles
  • Delegated Permissions : Read all groups
  • Delegated Permissions : Read directory data 

5. Account manifesto is up to date

clipboard_eb1536e32fb899f2811bca0435ce68590.png

nguiwhattosync.PNG

Error Message: 

  • The account manifesto is up to date.
  • No users are being returned.

Resolution:

Check:

  • Does the user have Admin rights to prevent permission issues
  • Users not returned have an SMTP proxy address & Mail address specified

5. The certificate has expired on the Azure App registrations side

Error Message: 

  • "We have come across a problem, and cannot continue. Please contact support quoting 1019d7 if this problem persists."
    • The number after "quoting" always changes.

Resolution:

Check:

  • This is error is on the customers side. They will have to renew their Certificate on the Azure App registrations side.
  • If admin create a new "secret key in the Azure App", admin must update the Key in the Proofpoint Dashboard under Import and Sync.