Error 701: Azure Key Vault

ErikAaesErikAaes Member Posts: 14
Hi

BC 16.2, we see this alot, anyone knows whats wrong?

There is not setup any Azure key vault, but is that required at all? It runs as an onPrem, on azure VMs

Server instance: PROD
Category: Azure Key Vault
ClientSessionId: 6a295346-70c9-4d7c-a5a8-9f4b564aa735
ClientActivityId: 16f53968-b2d3-4f59-b527-0eedd770b481
ServerSessionUniqueId: 216ea044-ceb6-4b35-95fb-7eef1e6a50a7
ServerActivityId: 5e89c1ab-0d0f-4b84-a5a4-dff29127fbc0
EventTime: 08/11/2020 06:14:29
Message The list of allowed secret names could not be fetched.
ProcessId: 6212
Tag: 0000970
ThreadId: 228
CounterInformation:
CustomParameters: {
}
GatewayCorrelationId: 3367d0d9-725a-46a4-b5d3-adfa27411f58

Always two warnings right before:
Server instance: PROD
Category: Runtime
ClientSessionId: 6a295346-70c9-4d7c-a5a8-9f4b564aa735
ClientActivityId: 16f53968-b2d3-4f59-b527-0eedd770b481
ServerSessionUniqueId: 216ea044-ceb6-4b35-95fb-7eef1e6a50a7
ServerActivityId: 5e89c1ab-0d0f-4b84-a5a4-dff29127fbc0
EventTime: 08/11/2020 06:14:29
Message (Exception): DotNet invoke error. SessionID:653, Interface:, type:Microsoft.Dynamics.Nav.AzureKeyVaultClient.AzureKeyVaultClientHelper, methodName:GetAzureKeyVaultSecret
RootException: Exception
Azure key vault has not been set up. Please contact your system administrator.
ExceptionStackTrace:
at Microsoft.Dynamics.Nav.AzureKeyVaultClient.AzureKeyVaultClientHelper.InvokeKeyVaultProviderMethod[T](Func`2 method)
at Microsoft.Dynamics.Nav.AzureKeyVaultClient.AzureKeyVaultClientHelper.GetAzureKeyVaultSecret(String SecretName)
CallerStackTrace:
at Microsoft.Dynamics.Nav.Runtime.NavDotNet.Invoke[T](String methodName, UInt32 methodIndex, BindingFlags flags, ParameterModifier modifier, Type[] referenceTypes, Object[] arguments)
at Microsoft.Dynamics.Nav.Runtime.NavDotNet.InvokeMethod[T](Boolean isStatic, String methodName, UInt32 methodIndex, Object[] arguments)
at Microsoft.Dynamics.Nav.BusinessApplication.Codeunit2202.GetSecretFromClient_Scope__1519509596.OnRun()
at Microsoft.Dynamics.Nav.Runtime.NavMethodScope.Run()
at Microsoft.Dynamics.Nav.BusinessApplication.Codeunit2202.GetSecretFromClient(NavText secretName)
<Much more>

Server instance: PROD
Category: Runtime
ClientSessionId: 6a295346-70c9-4d7c-a5a8-9f4b564aa735
ClientActivityId: 16f53968-b2d3-4f59-b527-0eedd770b481
ServerSessionUniqueId: 216ea044-ceb6-4b35-95fb-7eef1e6a50a7
ServerActivityId: 5e89c1ab-0d0f-4b84-a5a4-dff29127fbc0
EventTime: 08/11/2020 06:14:29
Message (Exception): This message had personal data removed. The original may still be in transient telemetry. Find it using the transientTelemetryId.
DotNet invoke error. SessionID:653, Interface:, type:Microsoft.Dynamics.Nav.AzureKeyVaultClient.AzureKeyVaultClientHelper, methodName:GetAzureKeyVaultSecret
RootException: Exception
ExceptionStackTrace:
at Microsoft.Dynamics.Nav.AzureKeyVaultClient.AzureKeyVaultClientHelper.InvokeKeyVaultProviderMethod[T](Func`2 method)
at Microsoft.Dynamics.Nav.AzureKeyVaultClient.AzureKeyVaultClientHelper.GetAzureKeyVaultSecret(String SecretName)
CallerStackTrace:
at Microsoft.Dynamics.Nav.Runtime.NavDotNet.Invoke[T](String methodName, UInt32 methodIndex, BindingFlags flags, ParameterModifier modifier, Type[] referenceTypes, Object[] arguments)
at Microsoft.Dynamics.Nav.Runtime.NavDotNet.InvokeMethod[T](Boolean isStatic, String methodName, UInt32 methodIndex, Object[] arguments)
at Microsoft.Dynamics.Nav.BusinessApplication.Codeunit2202.GetSecretFromClient_Scope__1519509596.OnRun()
at Microsoft.Dynamics.Nav.Runtime.NavMethodScope.Run()


BC16 gives me so many issues, specially on this server :-(

Answers

  • peterlinnetpeterlinnet Member Posts: 8
    Hi Erik,

    I get this too (on BC 16.4).
    Did you ever find a root cause or solution?

    /Peter
  • ErikAaesErikAaes Member Posts: 14
    No i did not. Upgraded to BC17, and that gives other issues.
    And more...

    That is solved by typing in http://noncense in Azure AD App ID URI, WS-Federation Login Endpoint and WS-Federation Metadata Location.

    Stupid solution, but whatever makes all those errors go away...
  • krishna1235krishna1235 Member Posts: 4
    edited 2023-10-09
    @ErikAaes @peterlinnet

    I'm also facing the same message from 1 year.
    We have a dll which just retrieves secrets from keyvault. It works perfectly on UAT server and fails on PROD server. Dont know the root cause of it.
    Network security rules are same on both VM's. Access policies are okay. Authentication of keyvault is okay. App registration linked is okay.
    Currently running on BC16.1 version.

    If I try to trigger the dll from BC present in my local machine running on Widnows, it works perfectly.

Sign In or Register to comment.