This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(96, 53%, 19%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EU%3C/text%3E%3C/svg%3E)
Recently we have applied/enabled TLS 1.2 and disabled TLS 1.1 and 1.0 in our Sharepoint 2013 Production environment. Since then we are facing a Search crawler issue. (unable to perform incremental crawler)
The Error messages show as "The secure sockets layer (SSL) certificate sent by the server was invalid and this item will not be crawled".
settings verified :
1) Host entry already verified and it is pointed to directly WFE server.
2) Ignore SSL check box is already checked
Central Administration->General Application Settings->Farm Search Administration, set "Ignore SSL warning" to Yes.
3) able to access the site from the crawler server side.no issues with certificates.
same search crawler is working fine for other web applications in the same WFE server.
Please find TLS registry settings applied as below:
Windows Registry Editor Version 5.00 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Protocols\TLS 1.2] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Protocols\TLS 1.2\Client] "DisabledByDefault"=dword:00000000 "Enabled"=dword:00000001 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Protocols\TLS 1.2\Server] "DisabledByDefault"=dword:00000000 "Enabled"=dword:00000001
Please suggest to me what to verify next. Thanks in advance.
Do you have the same issue when set up full crawl in SharePoint?
Set Ignore SSL warnings to Yes and run a full crawl to compare the results.
If the issue still exists, please check ULS log to find any clues.
More information:
If an Answer is helpful, please click "Accept Answer" and upvote it.
Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.
Thanks for sharing the details. I also followed this earlier and found that the option i.e. ignore ssl is already selected from long back.
This issue raise only after Enabling TLS 1.2 and disabled TLS 1.1 and 1.0.
Is anyone able to find a solution for this, we have Enabled TLS 1.2 and disabled SSL, TLS 1.1 and 1.0.
soon after that i have been receiving the error: "The secure sockets layer (SSL) certificate sent by the server was invalid and this item will not be crawled" and non of the HTTPS sites are being crawled.