Packet captures of both exchanges show the list of ciphers offered by the clients, but I'm not sure of any of these are actually enabled by default. So far, I have tested two clients, LDAPAdmin 1.6 and a Cisco ASA using LDAPS for AAA. The Windows SChannel error state is 1205. The TLS protocol defined fatal error code is 40. This may result in termination of the connection. The SSL connection request has failed.ĭescription: A fatal alert was generated and sent to the remote endpoint. The SChannel service is tearing down the TCP connection and offering the following description in the event logs.ĭescription: An TLS 1.2 connection request was received from a remote client application, but none of the cipher suites supported by the client application are supported by the server. To enable Windows to use specific TLS 1.2 ciphers that are supported by my clients.
I would like to see if anyone can suggest how I am having trouble getting various LDAP clients to connect using LDAP over SSL (LDAPS) on port 636. I am running Windows Server 2012 R2 as an AD Domain Controller, and have a functioning MS PKI.
0 kommentar(er)
