Schannel 36871 and 36874 error

Chong 866 Reputation points
2024-03-28T06:40:04.5533333+00:00

Hi Support,

We have several servers have Schannel 36871 and 36874 errors. Seems this is related to TLS 1.2 and we can enable it by registry in Server side.

But which registry key can fix this problem?

https://learn.microsoft.com/en-us/mem/configmgr/core/plan-design/security/enable-tls-1-2-server

https://learn.microsoft.com/en-us/windows-server/security/tls/tls-registry-settings?tabs=diffie-hellman#tls-dtls-and-ssl-protocol-version-settings

Thanks

Windows Server
Windows Server
A family of Microsoft server operating systems that support enterprise-level management, data storage, applications, and communications.
13,074 questions
0 comments No comments
{count} votes

1 answer

Sort by: Most helpful
  1. Daisy Zhou 23,726 Reputation points Microsoft Vendor
    2024-03-29T02:40:25.2333333+00:00

    Hello Chong,

    Thank you for posting in Q&A forum.

    You can configure the registry on one server and check if it helps.

    HKLM SYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Protocols\TLS 1.2\Server

    Create a DWORD registry value named "Enabled" with an entry value of "1" under the corresponding version-specific subkey.

    Name: Enabled
    Type: REG_DWORD
    Data: 1 (enabled) or 0 (disabled)

    For more information, please refer to link below.
    https://learn.microsoft.com/en-us/windows-server/security/tls/tls-registry-settings?tabs=diffie-hellman#tls-12

    Note: please back up the registry before you change it.

    I hope the information above is helpful.

    If you have any questions or concerns, please feel free to let us know.

    Best Regards,

    Daisy Zhou

    ============================================

    If the Answer is helpful, please click "Accept Answer" and upvote it.


Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.