Server Fault Stack Exchange
Server Fault Stack Exchange

Questions tagged [schannel]

26 questions
1
vote
1 answer

How do I view contents of incoming bindRequests to Active Directory DS?

I have a full fledged AD DS running on Windows server 2016. I have a spring app which I am using to authenticate against my active directory database using a simple authentication bind over a ssl connection. I want to examine the contents of all…
ThunderMead
  • 13
  • 2
1
vote
1 answer

Still suffering from Windows NPS May 2022 Certficate Update

in May 2022 Microsoft changed the way that client certificates are mapped to AD accounts, causing 802.1X EAP-TLS computer account authentication to stop working. Here is an additional resource with detailed background info on the Schannel<=>Kerbers…
namezero
  • 171
  • 1
  • 8
1
vote
1 answer

Windows Server 2012 R2 - Adding Cipher

this might be a complete newbee question. I have an 2012 R2 Server on which an application should call a partner who only offers the following ciphers: (0xc02f) TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256 ECDH secp256r1 (eq. 3072 bits RSA) FS 128 (0xc030)…
Moritz
  • 33
  • 1
  • 2
  • 6
0
votes
0 answers

Domain Controller wont Replicate. SChannel issue. Clients cant join domain

I've got an issue with a PDC for a tree domain in our AD forest. It cannot replicate to the other DC's and it's clients are losing trust with the domain and cannot be reset using Test-computersecurechannel -repair and I cannot join/rejoin clients…
Coldsweat25
  • 71
  • 7
0
votes
0 answers

An unknown connection request was received from a remote client application, but none of the cipher ..... The SSL connection request has failed

I am getting too frequent errors in my System Error Logs : An unknown connection request was received from a remote client application, but none of the cipher suites supported by the client application are supported by the server. The SSL…
khalidmehmoodawan
  • 111
  • 5
0
votes
0 answers

Using a third-party certificate with Active Directory without certificate request

The customer wants to use a COMODO signed TLS certificate for LDAPS on a Windows Server 2012 R2 domain contoller. The certificate was already purchased but the CSR wasn't created on the domain controller (as per…
ercpe
  • 576
  • 3
  • 15
0
votes
1 answer

ADFS v3 on Windows Server 2012 R2 rejects SSLv3 requests

I faced an issue with ADFS v3 running on Windows Server 2012 R2 When client which is restricted to use SSLv3 only accesses the ADFS site url, the request fails. The same thing works when using ADFSv2 on 2008 R2. The thing I noticed is ADFSv3 is…
Mr Cuco
  • 1
0
votes
0 answers

Fatal schannel issue "A fatal alert was received from the remote endpoint. The TLS protocol defined fatal alert code is 51"

Recently working on a vps Windows 2012r2 server. Ran into a fatal schannel issue. A fatal alert was received from the remote endpoint. The TLS protocol defined fatal alert code is 51. Tracked this back to a KB2992611 which was installed on the…
tdev
  • 14
  • 1
  • 2
0
votes
1 answer

Should Ssl renegotiate messages be encrypted?

In RFC5246 it is not mentioned that Ssl renegotiate messages should be encrypted. But when using Windows Schannel API I see that the renegotiate messages are encrypted. I tried to send a crafted "Server Hello Request" not encrypted, to a Ssl client…
AHS
  • 101
-1
votes
1 answer

Schannel Event ID 36888 and 36884 Certificate Error

I'm receiving the two following errors every ~60 seconds on a Windows 2008R2 SP1 Server running SQL Server 2008R2: First: Log Name: System Source: Schannel Date: 5/25/2016 9:23:02 AM Event ID: 36888 Task Category:…
Justin Russell
  • 29
  • 2
  • 7
-1
votes
1 answer

TLS 1.0 handshake fails in Windows Server 2012 R2

I am using Windows Server 2012 R2 to contact AWS services, namely https://elasticbeanstalk.eu-central-1.amazonaws.com/. However, the AWS toolkit for Visual Studio as well as Internet Explorer 11 fail to establish the TLS 1.0 connection to this…
Vladimir Lapacek
  • 1
  • 1
  • 1
1
2