Solved

Cannot connect using https / msxml3.dll error '80072f8f' A security error occurred

Posted on 2010-09-07
8
2,192 Views
Last Modified: 2012-05-10
Hello Everyone,

So I am a little perplexed.  I have an ASP site running on Win2003 / IIS6.  The ASP site makes an https connection to a WebMethods middle tier to transfer data.  The code has been working for over a year and over the weekend something happened and how I am getting an error.  I wrote an diagnostic program to see what was going on and I seem to be getting the following error:

msxml3.dll error '80072f8f'
A security error occurred

Can anyone please tell me why I am getting this error and What I need to do to fix it?  The server is managed by a third party, I am just develop the code. the code seems to work when I use http but not https.  So its definitely something with the exchange of the digital certificates.

Thanks in advance for your help.

 
0
Comment
Question by:Kozela
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 4
  • 3
8 Comments
 
LVL 9

Expert Comment

by:shalabhsharma
ID: 33623953
0
 

Author Comment

by:Kozela
ID: 33624183
shalabhsharma:

Thank you for the feedback.  The application has been working for over a year.  I am also using MSXML2.ServerHTTP.  So I am not sure this is applicable.

0
 
LVL 9

Expert Comment

by:shalabhsharma
ID: 33624197
It could be possible the error arrived due recently windows update on the Server. you should check the url
0
Migrating Your Company's PCs

To keep pace with competitors, businesses must keep employees productive, and that means providing them with the latest technology. This document provides the tips and tricks you need to help you migrate an outdated PC fleet to new desktops, laptops, and tablets.

 

Author Comment

by:Kozela
ID: 33624257
The URL is correct.  Any other ideas?
0
 
LVL 9

Expert Comment

by:shalabhsharma
ID: 33624288
0
 
LVL 3

Expert Comment

by:h4himanshu
ID: 33624315
Do you specify the port number in URL? Any chances that it was changed recently?
0
 

Author Comment

by:Kozela
ID: 33626604
The URL does have the port number but has not changed.  Thanks.
0
 

Accepted Solution

by:
Kozela earned 0 total points
ID: 33628413
Ok.  So here is the story.  Apparently, Windows Update KB980436 (MS10-049) was installed and it changed the was SSL/TLS works.  As a result, my application stoped working.  The Update should have left the server in compatibility mode, so it should have been transparent to my application.  However, it was not.  To get around the problem, we had the add the following keys to HKEY_LOCAL_MACHINE\System\CurrentControlSet\Control\SecurityProviders\SCHANNEL with a DWORD value of 1

AllowInsecureRenegoClients
AllowInsecureRenegoServers
UseScsvForTls

Adding these keys and a DWORD value of 1 makes the application go into compatibility mode.  Addind a DWORD value of 0 makes it go into Strict Mode.

Thanks for all the help.
0

Featured Post

Free Tool: Port Scanner

Check which ports are open to the outside world. Helps make sure that your firewall rules are working as intended.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
Tracing a live website down to the files which support it 2 30
IIS components 2 31
XML and version of MS XML Dom Document versions 5 33
Validating Date Part2 2 27
Lync server 2013 or Skype for business Backup Service Error ID 4049 – After File Share Migration
When it comes to showing a 404 error page to your visitors, you do not want that generic page to show, and you especially do not want your hosting provider’s ad error page to show either. In this article, I will show you how to enable the custom 40…
Nobody understands Phishing better than an anti-spam company. That’s why we are providing Phishing Awareness Training to our customers. According to a report by Verizon, only 3% of targeted users report malicious emails to management. With compan…

763 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question