Unable to complete OneNote Sync

Unable to complete OneNote Sync

7723
Created On 05/10/24 18:37 PM - Last Modified 02/10/25 21:17 PM


Symptom


  •  User can open onenote application.
  •  When clicked to sync, error message is displayed as below:
OneNote cannot connect to the server. If a problem occurs please verify Firewall,VPN, Proxy settings. Error code: 0x10000”
  • Traffic decryption is enabled on the firewall
  • certificate-related errors are seen on the onenote application.
certificate error 0x10000 - cert_trust_is_partial_chain

Environment


  • Palo Alto Firewalls
  • Supported PAN-OS
  • Onenote application
  • Decryption enabled

Cause


  • Onedrive IP address range is 13.107.136.0/22.
  • The one drive content sync address URL is "contentsync.onenote.com".
  • If this oneNote IP address  or contentsync.onenote.com is decrypted, this causes the sync to fail.

Resolution


  1. Add the URL "contentsync.onenote.com" to the decryption exclusion list.
  2. Bypass decryption for the onedrive IP range.
  3. Alternatively, create a no-decrypt policy or bypass decryption for the user.

Additional Information



 
Other users also viewed:
Actions
  • Print
  • Copy Link

    https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA14u000000HD8iCAG&lang=en_US&refURL=http%3A%2F%2Fknowledgebase.paloaltonetworks.com%2FKCSArticleDetail