Windows integrated authentication failure on platform host

Symptoms:

The installation continually rolls back with the following error:

Info: RunCommand: Trying to authenticate with default Windows credentials... Error: RunCommand: Device code flow using default credentials failed. Error: RunCommand: System.InvalidOperationException: Device code flow using default credentials failed. Error: RunCommand: Application terminated at Connect command.

Possible causes:

• In the case of an upgrade, the user who runs the installer is not an Identity Administrator of the Platform.

• In the case of a network alias or a DNS CNAME being specified as an FQDN that differs from the actual hostname, a security mechanism called Loopback Check blocks the authentication. Refer to Microsoft Security Bulletin MS08-068:

  https://docs.microsoft.com/en-us/security-updates/securitybulletins/2008/ms08-068

Resolution:

• If the Platform has already been deployed, the user who plans to run the upgrade needs to be added to the Identity Admin role.

• If there is an alternate DNS name in the certificate or such a name was specified in the FQDN parameter, follow the steps in the following Microsoft article:

  https://docs.microsoft.com/en-us/troubleshoot/windows-server/networking/accessing-server-locally-with-fqdn-cname-alias-denied