none
Windows Server 2012 R2 and TLS 1.2

    Question

  • I am running Windows Server 2012 R2 as an AD Domain Controller.I am having trouble getting various LDAP clients to connect using LDAP over SSL (LDAPS) on port 636.  I would like to see if anyone can suggest how to enable Windows to use specific TLS 1.2 ciphers that are supported by my clients.

    The SChannel service is tearing down the TCP connection and offering the following description in the event logs.

    An TLS 1.2 connection request was received from a remote client application, but none of the cipher suites supported by the client application are supported by the server. The SSL connection request has failed.

    A fatal alert was generated and sent to the remote endpoint. This may result in termination of the connection. The TLS protocol defined fatal error code is 40. The Windows SChannel error state is 1205.


    Wednesday, November 9, 2016 8:00 AM

Answers