Share via

Azure Container App w/ Dapr: Sidecars Started Failing to Provision.

Alex Rankin 50 Reputation points
2025-01-30T19:07:36.39+00:00

Hello,

All new deployments to my ACA environment (across all services) have started failing with the below error:
time="2025-01-30T17:43:40.406473523Z" level=fatal msg="Fatal error from runtime: failed to retrieve the initial identity certificate: error from sentry SignCertificate: rpc error: code = PermissionDenied desc = token validation failed: "sub" not satisfied: values do not match" app_id=xxx instance=xxx-api--4euxj67-86487f5486-8z46b scope=dapr.runtime type=log ver=1.12.5

This prevents the sidecar from initializing (in backoff state), and now Dapr is unavailable on these services. No configuration changes were made.

Any help is appreciated. Thanks!

Azure Container Apps
Azure Container Apps
An Azure service that provides a general-purpose, serverless container platform.
584 questions

2 answers

Sort by: Most helpful
Most helpful Newest Oldest
  1. Nicolai Knudsen 5 Reputation points
    2025-01-31T08:25:35.7533333+00:00

    We are experiencing the same issues in the Sweden-central region.This might be related to the recent AKS upgrade. https://releases.aks.azure.com/webpage/index.html

    1 person found this answer helpful.
    0 comments
  2. Alex Rankin 50 Reputation points
    2025-01-31T17:58:32.85+00:00

    I can confirm, this was resolved for us as well.

    0 comments

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.