Generating TLS Certificate

Veeam Data Cloud for Microsoft 365 uses a security certificate, also referred to as a TLS certificate, to encrypt data transmitted between your Microsoft 365 environment and the Veeam Data Cloud application. To maintain the continuous and secure encryption of your data during the transmission between your Microsoft 365 environment and Veeam Data Cloud, you may be required to reauthenticate your connection, similar to the initial setup process. If your TLS certificate has expired, your backup jobs will start failing with the following error message:

Error

AADSTS700027: Client assertion contains an invalid signature. [Reason - The key used is expired., Thumbprint of key used by client: 'ID', ... ]

Veeam Data Cloud for Microsoft 365 allows you to either use an existing security certificate or generate a new certificate automatically.

To generate a new certificate with Veeam Data Cloud, do the following:

  1. Log in to Veeam Data Cloud for Microsoft 365 with an administrator account.
  2. In the main menu, click Settings.
  3. In the Settings menu, click System.
  4. Click Generate a new certificate.

  1. Copy the code that Veeam Data Cloud for Microsoft 365 provides on the next screen.
  2. Follow the https://microsoft.com/devicelogin, paste the code and follow the suggested steps.
  3. Once the Microsoft steps have been completed, click Generate in Veeam Data Cloud for Microsoft 365.