When performing a DTLS handshake using the SChannel SSPI in Windows 10 - for which there is no documentation - how should the application handle a SEC_I_MESSAGE_FRAGMENT result from AcceptSecurityContext (ASC) or InitializeSecurityContext (ISC)?
I…
It is said that to shutdown a schannel connection following steps to be followed:
1)Call the ApplyControlToken function, specifying the SCHANNEL_SHUTDOWN control token.
2)After receiving an SEC_E_OK return value from ApplyControlToken, call the…
Recently used IISCrypto to disable protocols less than TLS 1.2 on the IIS web server. Starting to see numerous SCHANNEL errors in the event log like so:
A fatal error occurred while creating an SSL client credential. The internal error state is…
I know there are a few similar posts to this but I have not been able to solve this with there answers.
I tried git config —global http.schannelcheckrevoke false but I still get the error whether it’s set to true or false.
fatal: unable to access…
Background
Our organisation distributes internal certificates by using a group policy on our domain controller. For our git installations, this means that we will need to use the 'Windows Secure Channel' library for HTTPS connections, rather than…
I am using the following code to query current TLS connection:
SecPkgContext_ConnectionInfo data;
QueryContextAttributes(&myHandle, SECPKG_ATTR_CONNECTION_INFO, &data);
It returns correct structure with all the fields:
typedef struct…
Can't get the SChannel alert messages to be sent to client while calling my WCF service.
I've enabled the verbose logging of the SChannel alerts to the Event Viewer by setting the "EventLogging" DWORD in the Registry Editor to 0x0004 instead of…
I'm working on a NT service that uses SChannel to support client TLS connections. Certificates are installed manually via Local Machine Certificate Manager (certlm.msc) into a custom cert store, called "Public Hub Interface". The service has already…
I need to make an HTTP request from VBScript to a domain secured with SSL. The library I'm using to do that, ServerXMLHTTP, doesn't seem to be able to connect due to SSL certificate trust failure. This seems strange, as when I browse to the domain…
I have implemented a code for creating a secure connection using SSPI. I use it for sending mail over SMTP. It works fine with smtp.gmail.com and some other servers which I tried it with. But it doesn't work with smtp.live.com. The second call of…
I have a .NET (WinForms) application running as a (test-)client for a SOAP service. The service requires that the client authenticates itself with a client certificate (like this MSDN example:…
I want a client/server C++ application that can use TLS for secure communication, including client certificates, and potential to select and validate certificates myself.
I have used Schannel to do this before, but the key InitializeSecurityContext…
I'm using the TransmitFile API with I/O completion ports for an efficient multithreaded file server on Windows.
This all works fine, but I've now also implemented secure sockets using SChannel. Because TransmitFile streams the file directly to the…
Days of troubleshooting on this one, googling solutions & re-reading Microsoft documentation on the needed functions. Changing variables, retrying again and again. Help is very thoroughly appreciated, I'm sure it's not just me running into this.
I…
I am adding TLS encryption to a server side application. I am using the Schannel API to add the TLS. I am having a problem with CertFindCertificateInStore. It does not ever find the certificate that I am searching for. As criteria for the search I…
