Cause
One of the most common reasons for this is an invalid client secret being provided. This leads to Vanta 401 errors when attempting to access the token. To resolve this, administrators must ensure the secret being added to Vanta is the client's secret value, not the client's secret ID for the failing subscription.
Resolution
- You must delete the current key by going to the Vanta App Registration you created when connecting the integration. Search for App Registration in the search bar and select it under Services.
- Scroll down, select the Vanta App, click Certificates & Secrets, and then delete the existing key.
- Once that is complete, generate a new secret by clicking + New client secret
- Once the new secret is generated, do not leave this page! You WILL NOT be able to see the value again, so please leave this page open. Otherwise, you will need to generate a new key.
- Wait at least five minutes and up to 15, then head back into Vanta and attempt to connect the integration again. Steps to update the existing subscription can be viewed here: How to Update Expired Azure Client Secret
- On the second step, when prompted by Vanta, copy the client secret value from this page and enter it
- If the integration continues to fail, it is likely another error; please write to Vanta support and mention you tried the steps in this article.