User impact: Admins may be unable to access Activity Explorer in the Microsoft Purview portal.

More info: Affected admins may be unable to load Activity Explorer or may see it reported as unavailable due to licensing checks incorrectly returning ineligible results.

In some cases, admins may also experience issues retrieving sensitivity labels when using the Azure Information Protection (AIP) unified labeling client.

Current status: We’ve confirmed that the AIP unified labeling client is working as expected following the temporary mitigations that were applied. To further reduce impact, we’ve added additional service plans into the fallback licensing logic for Activity Explorer to minimize false “unlicensed” determinations while licensing validation is affected by the service-to-service authentication issue. We’ve also confirmed that restarting the affected backend services is required for the fix to fully take effect so the corrected certificate can be reloaded. A controlled service restart is now in progress, beginning with a limited scope to safely validate recovery before expanding more broadly. We’re continuing to closely monitor progress and will provide further updates as recovery continues.

Scope of impact: Some admins attempting to access Activity Explorer in the Microsoft Purview portal or retrieve sensitivity labels using the AIP unified labeling client may be impacted. This information may be updated as our investigation continues.

Root cause: A service-to-service authentication certificate was recently updated and is disrupting how licensing information is validated, causing some requests to be incorrectly identified as unlicensed and resulting in impact.

Next update by: Thursday, April 9, 2026, at 1:00 PM UTC