By using this site, you agree to our updated Privacy Policy and our Terms of Use. Manage your Cookies Settings.
459,663 Members | 1,638 Online
Bytes IT Community
+ Ask a Question
Need help? Post your question and get tips & solutions from a community of 459,663 IT Pros & Developers. It's quick & easy.

schannel errors when making ssl conn. from asp.net app to ldap ser

P: n/a
I am trying to establish an SSL connection to our company's LDAP server from
an ASP.NET application running on Windows 2003 Server and I am getting the
following set of event log errors:

Event Type: Error
Event Source: Schannel
Event Category: None
Event ID: 36870
Date: 10/21/2004
Time: 8:36:21 AM
User: N/A
Computer: R1E3S1-BL40P
Description:
A fatal error occurred when attempting to access the SSL client credential
private key. The error code returned from the cryptographic module is
0x80090304.

Event Type: Warning
Event Source: Schannel
Event Category: None
Event ID: 36875
Date: 10/21/2004
Time: 8:36:21 AM
User: N/A
Computer: R1E3S1-BL40P
Description:
The remote server has requested SSL client authentication, but no suitable
client certificate could be found. An anonymous connection will be attempted.
This SSL connection request may succeed or fail, depending on the server's
policy settings.

Event Type: Information
Event Source: Schannel
Event Category: None
Event ID: 36880
Date: 10/21/2004
Time: 8:36:21 AM
User: N/A
Computer: R1E3S1-BL40P
Description:
An SSL client handshake completed successfully. The negotiated cryptographic
parameters are as follows.
Protocol: TLS (SSL 3.1)
Cipher: RC4
Cipher strength: 128
MAC: MD5
Exchange: RSA
Exchange strength: 1024

All of this works fine from a Windows 2000 Server, so I am trying to figure
out if there is some difference between the 2, or if there is an extra
configuration step needed under 2003. On both systems, I have our corporate
root certificate installed as a Trusted Root Certificate, and a server
certificate installed for IIS.

If anyone has a suggestion of what to try, I would greatly appreciate it.

Thank you,
Clark Laughlin
Nov 18 '05 #1
Share this question for a faster answer!
Share on Google+

This discussion thread is closed

Replies have been disabled for this discussion.