Description:
All about Information Technology infrastructure and system. Helpdesk & support issue, deployment guide, and daily activity in managing an information technology operation.
Search This Blog
Tuesday, January 2, 2024
Another Error code 0x80070643 when installing Microsoft Defender for Identity sensor
Tuesday, December 28, 2021
Microsoft Defender for Identity sensor installation failing - error code 0x80070643
Description:
You are trying to install Microsoft Defender for Identity sensor on a Domain Controller. The Domain Controller need to use proxy to communicate to the internet. You've enter the correct proxy setting on the Domain Controller system setting. And you've make sure the required communication port (443) are already open from Domain Controller to *.atp.azure.com. However you still got stop error 0x80070643.
Resolution:
Configure the proxy setting using registry. You must copy the proxy configuration that you use in user context to the localsystem and localservice. To copy your user context proxy settings:
Make sure to back up the registry keys before you modify them.
In the registry, search for the value
DefaultConnectionSettings
as REG_BINARY under the registry keyHKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\DefaultConnectionSettings. Export all the value inside the Connections key
.Open the exported file and edit the location to become
HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\DefaultConnectionSettings
. Save the first copy of the file.Double click the new file to import the value from the Current_user
DefaultConnectionSettings
to LocalSystem.After that, open the exported file and edit the location to become
HKU\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\DefaultConnectionSettings
. Save the second copy of the file.Double click the second file to import value from the Current_User
DefaultConnectionSettings
to LocalService.Close the registry editor.
Cannot Re-Install NPCAP
Description:
You are trying to re-install NPCAP as part of Microsoft Defender for Identity Sensor deployment on a Domain Controller. However you got stuck uninstall error problem.
You have try to remove the registry from Computer\HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Uninstall\NpcapInst. However the problem still exist.
Resolution:
Search for possible services that were using NPCAP. Example is Wireshark or Cisco Tetration. Stop those services and try to re-install NPCAP again.