Note
Access to this page requires authorization. You can try signing in or changing directories.
Access to this page requires authorization. You can try changing directories.
Troubleshoot
This article presents the most frequent authentication issues when using SslStream cryptography- and security-related functionalities in .NET are implemented by interop with either the OS API (such as Schannel on Windows) or low-level system libraries (like OpenSSL on Linux). The behavior of .NET application, including exception messages and error codes may therefore change depending on which platform it is run.
Some issues may be easier to investigate and troubleshoot by observing the actual messages exchanged over the wire using tools such as Wireshark or tcpdump. These tools can be used to inspect the ClientHello, ServerHello, and other messages for advertised supported TLS versions allowed and negotiated cipher suites and the certificates exchanged for authentication.
Intermediate certificates are not sent
During the TLS handshake, the server (and the client too, if client authentication is requested) sends its certificate to prove its identity to the client. In order to validate the authenticity of the certificate, a chain of certificates needs to be built and verified. The root of the chain must be one of the trusted root certificate authority (CA), the certificate of which is stored in the machine certificate store.
If the peer certificate hasn't been issued by one of the trusted CAs an intermediate CA certificate is necessary to build the certificate chain. However, if the intermediate certificate isn't available, it isn't possible to validate the certificate and the TLS handshake may fail.
This issue is most frequently encountered on Windows. Even though the application provided intermediate certificates via the authentication options, they will not be sent to the peer unless they are stored in the Windows certificate store. This limitation is due to the fact that the actual TLS handshake occurs outside of the application process.
For server applications, it is possible to pass an SslStreamCertificateContext as SslServerAuthenticationOptions.ServerCertificateContext. During construction of the SslStreamCertificateContext instance, you can pass additional intermediate certificates and these will be temporarily added into the certificate store.
Unfortunately, for client application the only solution is to add the certificates to the certificate store manually.
Handshake failed with ephemeral keys
On Windows, you may encounter the (0x8009030E): No credentials are available in the security package error message when attempting to use certificates with ephemeral keys. This behavior is due to a bug in the underlying OS API (Schannel). More relevant info and workarounds can be found on the associated GitHub issue.
Client and server do not possess a common algorithm
When inspecting the ClientHello and ServerHello messages, you may find out that there is no cipher suite offered by both client and server or even that some ciphers are not offered even if explicitly configured via CipherSuitesPolicy (available on Linux only). The underlying TLS library may disable TLS versions and cipher suites which are considered insecure.
On many Linux distributions, the relevant configuration file is located at /etc/ssl/openssl.cnf.
On Windows, the Enable-TlsCipherSuite and Disable-TlsCipherSuite PowerShell cmdlets can be used to configure cipher suites. Individual TLS versions can be enabled/disable by configuring the HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Protocols\TLS <version>\{Client|Server}\Enabled registry key.
Collaborate with us on GitHub
The source for this content can be found on GitHub, where you can also create and review issues and pull requests. For more information, see our contributor guide.
