Troubleshooting SharePoint connectivity

This article contains information on all known connectivity problems related to SharePoint servers (both SharePoint Online and its on-premises version) as well as possible solutions.

Problems with configuring a connection to SharePoint Online

When configuring a connection to SharePoint Online, in the last step of the SharePoint Server connection wizard the program tries to enumerate SharePoint site collections and connect to one of them. If the program fails to perform any of these actions, it will display failure notifications, as shown in Fig. 1. below:

Backup SharePoint online connection errors
Fig. 1. Failure notifications shown when configuring a connection to SharePoint Online.

The examples below show the most common error messages:

Failed to connect to SharePoint using account '<admin_account>'. Make sure that you have entered the account credentials and server URLs correctly.

In case you get this message, double-check the details entered in the Server address and Admin's credentials steps of the connection wizard and try again. If multi-factor authentication is enabled for the provided admin account, make sure to use the app password instead of the regular Office 365 account password. Make also sure that the admin account is assigned specific roles allowing access to SharePoint content (Keep in mind that the propagation of admin rights in Office 365 usually takes some time). Finally, check your internet connection. 

It is also possible that the support for non-modern (legacy) authentication protocols is disabled in your tenant. Enabling it may also solve the problem. Read more below

Exception: For security reasons DTD is prohibited in this XML document.

This problem is most likely caused by the DNS assistance service (also known as DNS hijacking or DNS redirection) used by your Internet Service Provider (ISP). Suggestions on how to troubleshoot this problem can be found in this Knowledge Base article

Problems with configuring a connection to on-premises SharePoint server

When configuring a connection to the on-premises SharePoint server, in the last step of the SharePoint Server connection wizard the program tries to enumerate site collections with PowerShell and connect to any SharePoint site collections and Admin service. If the program fails to perform any of these actions, it will display failure notifications, as shown in Fig. 2. below:

Backup SharePoint on-prem connection errors
Fig. 2. Failure notifications shown when configuring a connection to the on-premises SharePoint server.

The examples below show the most common error messages:

Failed to connect to SharePoint using account '<admin_account>'. Make sure you have entered the account credentials and server URLs correctly.

In case you get this message, double-check the details entered in the Server address and Admin's credentials steps of the connection wizard and try again. Make also sure that the admin account has all the necessary roles and permissions assigned. Finally, check your internet connection. 

Failed to connect to Central Administration service. Make sure that you have entered its URL correctly.

Go back to the Server address step of the wizard and check if the URL address entered in the Central Administration URL field is correct. Keep in mind that it is filled automatically based on the entered SharePoint Server URL; however, you need to provide the port number manually. 

Other known SharePoint connectivity problems

Below are some of the most common error that may appear when configuring various jobs in CodeTwo Backup. 

The term 'Get-UnifiedGroup' is not recognized as the name of a cmdlet, function, script file, or operable program.

You may get this error while configuring a SharePoint backup job and trying to list team sites. Try to reconfigure your connection to SharePoint Online. Make also sure that the admin account used to connect to your SharePoint server is assigned at least the SharePoint administrator role (learn more).

Important

Keep in mind that the propagation of admin rights in Office 365 usually takes some time. The attempt to list SharePoint sites immediately after assigning the appropriate role may fail (you’ll get the same error message). Try configuring a backup job later.

Cannot contact web site '<site URL>' or the web site does not support SharePoint Online credentials.

You may receive this error in the SharePoint restore job wizard while attempting to create a new site collection or map users, groups, or permission levels. This happens when the use of non-modern (legacy) authentication protocols in disabled in your SharePoint Online environment. When disabled, the -Credential parameter used by CodeTwo Backup to connect to SharePoint Online via PowerShell is blocked. To fix this, you need to enable the support for non-modern authentication protocols either by using:

Warning

It may take up to 24 hours for changes to take effect.

Enabling support for non-modern authentication protocols using PowerShell

  1. Open the ps SharePoint Online Management Shell command prompt.
  2. Connect to your SharePoint Online by using the following command:
    Connect-SPOService -Url https://<organization>-admin.sharepoint.com
    where <organization> is the organization (tenant) name set in Office 365.
  3. Run the following cmdlet:
    Set-SPOsite -LegacyAuthProtocolsEnabled $True​

Enabling support for non-modern authentication protocols in SharePoint Online Management Shell

  1. Log in to Office 365 and click Admin to open Microsoft 365 admin center (Office 365 admin center).
  2. In the left pane, expand Admin centers and click SharePoint (Fig. 2.).

    740-1
    Fig. 2. Opening the SharePoint admin center.

  3. In the SharePoint admin center, click access control from the menu on the left, and under Apps that don't use modern authentication settings select Allow (Fig. 3.).

    Backup O365 enabling non-modern auth protocols
    Fig. 3. Enabling non-modern authentication protocols.

  4. Click OK to save changes.
Failed to list <SharePoint object> from the target server. Make sure that you properly defined the SharePoint connection and that the administrator's account used in the connection has sufficient access rights.

The <SharePoint object> may refer to site collections, team sites, or OneDrive sites. This error usually appears when listing SharePoint objects in the backup or restore jobs. Try reconfiguring the connection to your SharePoint server.

Double-check also if the admin account used to establish the connection to your SharePoint server has all the necessary roles and permissions assigned.

Access denied. You do not have permission to perform this action or access this resource.

This error may occur while restoring SharePoint lists to SharePoint Online. To fix this problem, you need to allow custom script in your SharePoint Online tenant. Find out how to do so here.

Was this information useful?