Can't see the "Scan" option after deploying Microsoft Ip Scanner

Question

Can't see the "Scan" option after deploying Microsoft Ip Scanner

Niharika Ch 25

Hi - I've deployed IP Scanner but i can't see the "Scan" option after selecting the content scan job? I tried to run "Start-Scan" command via powershell as well and then executed "Get-ScanStatus" command to see if the scan really kicked in or not. But the output was showing as,

Status

Idle

IsScanning

false

I'm trying to check each and every step of deployment but can't understand what is missing here. Anyone experienced this situation or know any solution for this please?

Niharika Ch 25 Reputation points

2025-04-16T22:37:42.3066667+00:00
Just want to add a bit more info of logs:

Executed Start-Scanner Diagnostics to see the logs and they got exported to .zip file location. Aftre inspecting logs, i could see below error,

Warn 2025-04-16 15:27:43.6541 MSIP.Auth MSIP.Scanner (11820) Failed to acquire a token interactively "MSAL.Desktop.4.54.0.0.MsalUiRequiredException:

ErrorCode: no_prompt_failed

Microsoft.Identity.Client.MsalUiRequiredException: One of two conditions was encountered: 1. The Prompt.Never flag was passed, but the constraint could not be honored, because user interaction was required. 2. An error occurred during a silent web authentication that prevented the HTTP authentication flow from completing in a short enough time frame.
Ganesh Gurram 6,280 Reputation points Microsoft External Staff

2025-04-18T03:41:35.1566667+00:00

@Niharika Ch

We haven’t heard from you on the last response and was just checking back to see if you have a resolution yet. In case if you have any resolution please do share that same with the community as it can be helpful to others. Otherwise, will respond with more details and we will try to help.
Ganesh Gurram 6,280 Reputation points Microsoft External Staff

2025-04-21T05:08:43.9966667+00:00

@Niharika Ch - Following up to see if the above suggestion was helpful. And, if you have any further query do let us know.
Niharika Ch 25 Reputation points

2025-04-22T14:34:37.72+00:00

thanks for your input, @ganesh gurram . This is indeed related to authentication problem. The scanner is running after correcting the auth problem, thanks.
Ganesh Gurram 6,280 Reputation points Microsoft External Staff

2025-04-23T00:56:32.8566667+00:00

@Niharika Ch - Glad to know that the issue has been resolved. Please do click "Accept answer” for the same, which might be beneficial to other community members reading this thread. And, if you have any further query do let us know.

Accepted answer

0 additional answers

Your answer

Niharika Ch 25 Reputation points

2025-04-16T22:37:42.3066667+00:00

Just want to add a bit more info of logs:

Executed Start-Scanner Diagnostics to see the logs and they got exported to .zip file location. Aftre inspecting logs, i could see below error,

Warn 2025-04-16 15:27:43.6541 MSIP.Auth MSIP.Scanner (11820) Failed to acquire a token interactively "MSAL.Desktop.4.54.0.0.MsalUiRequiredException:

ErrorCode: no_prompt_failed

Microsoft.Identity.Client.MsalUiRequiredException: One of two conditions was encountered: 1. The Prompt.Never flag was passed, but the constraint could not be honored, because user interaction was required. 2. An error occurred during a silent web authentication that prevented the HTTP authentication flow from completing in a short enough time frame.
Ganesh Gurram 6,280 Reputation points Microsoft External Staff

2025-04-18T03:41:35.1566667+00:00

@Niharika Ch

We haven’t heard from you on the last response and was just checking back to see if you have a resolution yet. In case if you have any resolution please do share that same with the community as it can be helpful to others. Otherwise, will respond with more details and we will try to help.
Ganesh Gurram 6,280 Reputation points Microsoft External Staff

2025-04-21T05:08:43.9966667+00:00

@Niharika Ch - Following up to see if the above suggestion was helpful. And, if you have any further query do let us know.
Niharika Ch 25 Reputation points

2025-04-22T14:34:37.72+00:00

thanks for your input, @ganesh gurram . This is indeed related to authentication problem. The scanner is running after correcting the auth problem, thanks.
Ganesh Gurram 6,280 Reputation points Microsoft External Staff

2025-04-23T00:56:32.8566667+00:00

@Niharika Ch - Glad to know that the issue has been resolved. Please do click "Accept answer” for the same, which might be beneficial to other community members reading this thread. And, if you have any further query do let us know.

Answer 1

@Nikhita Cheemati

The issue you're experiencing — where the "Scan" option is not visible and Start-Scan doesn’t start the job (status remains Idle) — is related to an authentication failure in the Microsoft Information Protection (MIP) Scanner.

Based on your logs: MsalUiRequiredException: ErrorCode: no_prompt_failed

This indicates that the scanner attempted silent authentication, but it failed because user interaction was required and not permitted in the current mode.

According to this MS documentation: Resolve issues with MIP Scanner deployment

Please follow these steps to resolve the issue:

Run the scanner in interactive mode - You need to perform an interactive login once to allow the scanner to acquire and cache the necessary authentication token.

Run the following command from an elevated PowerShell session:

Start-Process "msip.scan.exe" -ArgumentList "-interactive"

Re-run the scan - After signing in successfully, you can try to start the scan again:

Start-Scan
Get-ScanStatus

You should now see the scan status changing from Idle to Running.

Confirm required permissions - Ensure that the account you're using has the appropriate permissions assigned in Microsoft Entra ID (formerly Azure Active Directory). This includes roles like Compliance Administrator or Security Reader/Administrator.

Review Scanner Configuration:

The content scan job is configured properly

The scanner profile is assigned and enabled

The repositories have valid paths and scan rules applied

You can validate this using:

Get-ScannerConfiguration

References

I hope this information helps.

Kindly consider upvoting the comment if the information provided is helpful. This can assist other community members in resolving similar issues.

Ganesh Gurram 6,280 Reputation points Microsoft External Staff

2025-04-24T02:50:14.53+00:00

@Niharika Ch - Could you please "Accept answer” and **"Yes"**for was this answer helpful? This might be beneficial to other community members reading this thread.

Share via

Can't see the "Scan" option after deploying Microsoft Ip Scanner

0 additional answers

Your answer