A fatal error occurred while creating a TLS client credential. The internal error state is 10013
Recently deployed a Windows 2016 Standard Server, with Active Directory and Exchange 2016.
We have disabled SSL 1.0, 2.0 and 3.0 for both Server and Client, and have disabled TLS 1.0 and TLS 1.1.
We are repeatedly getting the following entry in our system log. What is causing this, and how can I fix it.
Basically we had to enable TLS 1.2 for .NET 4.x. Making this registry changed worked for me, and stopped the event log filling up with the Schannel error.
More information on the answer can be found here
Linked Info Summary
Enable TLS 1.2 at the system (SCHANNEL) level:
Windows Registry Editor Version 5.00
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Protocols\TLS 1.2]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Protocols\TLS 1.2\Client]
"DisabledByDefault"=dword:00000000
"Enabled"=dword:00000001
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Protocols\TLS 1.2\Server]
"DisabledByDefault"=dword:00000000
"Enabled"=dword:00000001
(equivalent keys are probably also available for other TLS versions)
Tell .NET Framework to use the system TLS versions:
Windows Registry Editor Version 5.00
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\.NETFramework\v4.0.30319]
"SystemDefaultTlsVersions"=dword:00000001
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\.NETFramework\v4.0.30319]
"SystemDefaultTlsVersions"=dword:00000001
This may not be desirable for edge cases where .NET Framework 4.x applications need to have different protocols enabled and disabled than the OS does.
- Why is Premake5 producing incorrect file separator on Windows?
- Connecting to Microsoft SQL server using Python
- Simulate typing effect in BATCH
- windows-rs SetWindowLongPtrW failed, error code 0
- SQLAlchemy does not connect to SQL Server with ODBC Driver 18 for SQL Server but pyodbc does
- How to remove JRE entries from Windows registry?
- Jenkins connect to the remote Docker Engine, build image failed
- Why is tkinter making 2 extra windows?
- Why git can't remember my passphrase under Windows
- How to change the icon of .bat file programmatically?
- Windows Batch File Looping Through Directories to Process Files?
- Plugin [id: 'com.jfrog.artifactory', version: '4.33.1'] was not found in any of the following sources:
- Can I tell what version of Visual Studio was used to build a DLL by examining the DLL itself
- The application called an interface that was marshalled for a different thread MAUI multi platfrom app
- clang++ 14 does not generate PDB file
- Open document with default OS application in Python, both in Windows and Mac OS
- Is it possible to write a valid PE file from memory to disk?
- Margin different in Windows (Chome, Edge, etc.) and Mac OS (Safari)
- How do time tracking softwares find screen time of applications?
- Set window position of an application on Windows command line
- how can I copy files from all subdirectory according to a specific file type
- Convert from Windows NT device path to drive letter path
- How to configure codeblocks?
- Trying to determine printer status always returns 0 for offline & online printers
- Launching a website via the Windows commandline
- Open a Web Page in a Windows Batch FIle
- How do I copy a string to the clipboard?
- Shortcut to pull up all file explorer windows that are open
- ipconfig/all doesn't give an ip address for ethernet port
- In what use cases I will need WSL