[GH-ISSUE #2527] Error 403 when trying to add a autopilot device #1272

New issue

Closed

opened 2026-03-02 13:42:54 +03:00 by kerem · 5 comments

kerem commented 2026-03-02 13:42:54 +03:00

Owner

Copy link

Originally created by @v1corp on GitHub (Jun 6, 2024).
Original GitHub issue: https://github.com/KelvinTegelaar/CIPP/issues/2527

Description

I am trying to add an Autopilot device to one of my tenants via Microsoft Product Key ID. I go through the steps of adding it and on Step 4 once I submit it. I receive an error message saying Failed to create autopilot devices. Response status code does not indicate success: 403(Forbidden).

I attempted to conduct some troubleshooting to see why I am experiencing this issue. I attempted to add an autopilot device to a different tenant just to see if this an issue affecting all tenants. I was able to get the device enrolled into a separate tenant using the same Product Key ID method. I then removed it from the test tenant I added it to. Then manually got the HW info and manually added the device through the windows autopilot devices page in the tenant. Which was a success. I have 3 more devices that I need to add to the tenant and all of them are receiving the error message. I have attempted to clear tenant cache, CPV refresh on the tenant in question, and run a tenant access check which was successful, none of which have helped. I am fairly new to CIPP but, I feel like I have exhausted my troubleshooting steps with this.

Environment data

Sponsored Instance
Front End Version: 5.7.1
Back End Version: 5.7.4
Tried Tenant Cache Clear: True
Tried Token Cache Clear: False

Originally created by @v1corp on GitHub (Jun 6, 2024). Original GitHub issue: https://github.com/KelvinTegelaar/CIPP/issues/2527 ### Description I am trying to add an Autopilot device to one of my tenants via Microsoft Product Key ID. I go through the steps of adding it and on Step 4 once I submit it. I receive an error message saying Failed to create autopilot devices. Response status code does not indicate success: 403(Forbidden). I attempted to conduct some troubleshooting to see why I am experiencing this issue. I attempted to add an autopilot device to a different tenant just to see if this an issue affecting all tenants. I was able to get the device enrolled into a separate tenant using the same Product Key ID method. I then removed it from the test tenant I added it to. Then manually got the HW info and manually added the device through the windows autopilot devices page in the tenant. Which was a success. I have 3 more devices that I need to add to the tenant and all of them are receiving the error message. I have attempted to clear tenant cache, CPV refresh on the tenant in question, and run a tenant access check which was successful, none of which have helped. I am fairly new to CIPP but, I feel like I have exhausted my troubleshooting steps with this.  ### Environment data ```PowerShell Sponsored Instance Front End Version: 5.7.1 Back End Version: 5.7.4 Tried Tenant Cache Clear: True Tried Token Cache Clear: False ```

kerem 2026-03-02 13:42:54 +03:00

• closed this issue
• added the
  bug
  unconfirmed-by-user
  labels

kerem commented 2026-03-02 13:42:55 +03:00

Author

Owner

Copy link

@github-actions[bot] commented on GitHub (Jun 6, 2024):

Thank you for creating a bug. Please make sure your bug is indeed a unique case by checking current and past issues, and reading the complete documentation at https://docs.cipp.app/
If your bug is a known documentation issue, it will be closed without notice by a contributor. To confirm that this is not a bug found in the documentation, please copy and paste the following comment: "I confirm that I have checked the documentation thoroughly and believe this to be an actual bug."

Without confirming, your report will be closed in 24 hours. If you'd like this bug to be assigned to you, please comment "I would like to work on this please!".

<!-- gh-comment-id:2152830677 --> @github-actions[bot] commented on GitHub (Jun 6, 2024): Thank you for creating a bug. Please make sure your bug is indeed a unique case by checking current and past issues, and reading the complete documentation at https://docs.cipp.app/ If your bug is a known documentation issue, it will be closed without notice by a contributor. To confirm that this is not a bug found in the documentation, please copy and paste the following comment: "I confirm that I have checked the documentation thoroughly and believe this to be an actual bug." Without confirming, your report will be closed in 24 hours. If you'd like this bug to be assigned to you, please comment "I would like to work on this please!".

kerem commented 2026-03-02 13:42:55 +03:00

Author

Owner

Copy link

@v1corp commented on GitHub (Jun 6, 2024):

I confirm that I have checked the documentation thoroughly and believe this to be an actual bug.

<!-- gh-comment-id:2152834684 --> @v1corp commented on GitHub (Jun 6, 2024): I confirm that I have checked the documentation thoroughly and believe this to be an actual bug.

kerem commented 2026-03-02 13:42:55 +03:00

Author

Owner

Copy link

@KelvinTegelaar commented on GitHub (Jun 6, 2024):

403 forbidden most likely means that your CIPP service account is not in AdminAgents or the correct GDAP groups. This is a support issue, hit up our helpdesk as you're a sponsor :)

<!-- gh-comment-id:2152842103 --> @KelvinTegelaar commented on GitHub (Jun 6, 2024): 403 forbidden most likely means that your CIPP service account is not in AdminAgents or the correct GDAP groups. This is a support issue, hit up our helpdesk as you're a sponsor :)

kerem commented 2026-03-02 13:42:55 +03:00

Author

Owner

Copy link

@v1corp commented on GitHub (Jun 6, 2024):

When I first signed up, I knew I could reach out to support. What would be the best way of getting in contact with them to open a ticket or get assistance? Thank you!

<!-- gh-comment-id:2152845757 --> @v1corp commented on GitHub (Jun 6, 2024): When I first signed up, I knew I could reach out to support. What would be the best way of getting in contact with them to open a ticket or get assistance? Thank you!

kerem commented 2026-03-02 13:42:55 +03:00

Author

Owner

Copy link

@KelvinTegelaar commented on GitHub (Jun 6, 2024):

helpdesk@cyberdrain.com is the best method, you'll receive an auto-reply with a ticket number if you ever need to reference that. Another option is Discord #quicksupport channel. https://discord.gg/cyberdrain. :)

<!-- gh-comment-id:2152849936 --> @KelvinTegelaar commented on GitHub (Jun 6, 2024): helpdesk@cyberdrain.com is the best method, you'll receive an auto-reply with a ticket number if you ever need to reference that. Another option is Discord #quicksupport channel. https://discord.gg/cyberdrain. :)

kerem referenced this issue 2026-03-02 13:57:07 +03:00

[PR #1272] [MERGED] #1271 - Added item clear ImmutableId in users-cippactions #3162

kerem referenced this issue 2026-03-02 13:57:09 +03:00

[PR #1276] [MERGED] Dev #3167

Sign in to join this conversation.

No Branch/Tag specified

Branches Tags

main

docs

dev

dependabot/npm_and_yarn/dev/uiw/react-json-view-2.0.0-alpha.42

dependabot/npm_and_yarn/dev/tanstack/react-query-persist-client-5.96.2

dependabot/npm_and_yarn/dev/mui-tiptap-1.30.0

dependabot/npm_and_yarn/dev/tanstack/react-query-devtools-5.96.2

dependabot/npm_and_yarn/dev/recharts-3.8.1

dependabot/github_actions/dev/actions/setup-node-6.4.0

copilot/add-alert-for-report-only-ca

release/beta

release/nightly

docs-maintenance

v10.4.0

v10.3.0

v10.2.0

v10.1.0

v10.0.0

v8.8.0

v8.7.0

v8.6.0

v8.5.0

v8.4.0

v8.3.0

v8.2.0

v8.1.0

v8.0.0

v7.5.0

v7.4.0

v7.3.0

v7.2.0

v7.1.0

v7.0.1

v6.4.0

v6.3.0

v6.2.0

v6.1.0

v6.0.0

v5.9.0

v5.8.5

v5.8.0

v5.7.0

v5.6.0

v5.5.0

v5.4.0

v5.3.0

v5.2.0

v5.1.0

v5.0.0

v4.9.0

v4.8.0

v4.7.0

v.4.6.0

v4.5.0

v4.4.0

v4.3.0

v4.2.0

v4.1.0

v4.0.0

v3.8.0

v3.7.0

v3.6.0

v3.5.0

v3.4.0

v3.3.0

v3.2.0

v3.1.0

v3.0.0

v2.20.0

v2.19.0

v2.18.0

v2.17.0

v2.16.0

v2.15.0

v2.13.0

v2.12.0

v2.11.2

v2.1.11.0

v.2.10.0

v2.9.0

v2.8.0

v2.7.0

v2.6.0

v2.5.5

v2.5.0

v2.4.0

v.2.3.0

v2.2.0

v2.1.2

v2.1.1

v2.1.0

v2.0.1

2.0.0

v1.5.1

v1.5.0

v1.4.3

v1.4.2

v1.4.0

v1.3.0

v1.2.1

v1.2.0

1.1.0

release

Labels

Clear labels   

API

  

Feature

  

NotABug

  

NotABug

  

Planned

  

Sponsor Priority

  

Sponsor Priority

  

bug

  

documentation

  

duplicate

  

enhancement

  

needs more info

  

no-activity

  

no-priority

  

not-assigned

  

pull-request

Mirrored from GitHub Pull Request

  

react-conversion

  

react-conversion

  

roadmap

  

security

  

stale

  

unconfirmed-by-user

  

unconfirmed-by-user

  

wontfix

No labels

API

Feature

NotABug

NotABug

Planned

Sponsor Priority

Sponsor Priority

bug

documentation

duplicate

enhancement

needs more info

no-activity

no-priority

not-assigned

pull-request

react-conversion

react-conversion

roadmap

security

stale

unconfirmed-by-user

unconfirmed-by-user

wontfix

Milestone

Clear milestone

No items

No milestone

Projects

Clear projects

No items

No project

Assignees

Clear assignees

No assignees

1 participant

Notifications

Subscribe

Due date

The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference

starred/CIPP#1272

No description provided.