Schannel error logged every few seconds in SYSTEM log ?

People,

I'm having a strange problem that I'm still investigating and don't understand, I have looked through the Event viewer in one of my backup server and it seems that the SChannel error is logged daily every few seconds ?

see the below error:

Log Name:      System
Source:        Schannel
Date:          29/01/2015 10:32:31 AM
Event ID:      36888
Task Category: None
Level:         Error
Keywords:      
User:          SYSTEM
Computer:      BackupServer01.domain.com
Description:
The following fatal alert was generated: 40. The internal error state is 1205.

Log Name:      System
Source:        Schannel
Date:          29/01/2015 10:32:31 AM
Event ID:      36874
Task Category: None
Level:         Error
Keywords:      
User:          SYSTEM
Computer:      BackupServer01.domain.com
Description:
An SSL 3.0 connection request was received from a remote client application, but none of the cipher suites supported by the client application are supported by the server. The SSL connection request has failed.

Log Name:      System
Source:        Schannel
Date:          29/01/2015 10:32:20 AM
Event ID:      36874
Task Category: None
Level:         Error
Keywords:      
User:          SYSTEM
Computer:      BackupServer01.domain.com
Description:
An TLS 1.0 connection request was received from a remote client application, but none of the cipher suites supported by the client application are supported by the server. The SSL connection request has failed.

Open in new window


The server is Windows Server 2008R2 SP1 running as physical box HP DL 380p G7

From the backup application perspective, I see there is no error and it functioning as it should, but somehow I still don't understand as to why it is logged continuously every 10-20 seconds.

Any idea please ?
LVL 9
Senior IT System EngineerIT ProfessionalAsked:
Who is Participating?
 
arnoldConnect With a Mentor Commented:
The issue in the two messages deals with mismatch in cryptography (encryption) your schannel setting is to deny SSL 3.0.  Your TLS enabled ciphers are not available on the client system that makes the connection attempts.

Does this system have a CA role installed?
0
 
arnoldConnect With a Mentor Commented:
The error, "An SSL 3.0 connection request was received from a remote client application, but none of the cipher suites supported by the client application are supported by the server. The SSL connection request has failed."
The ciphers

You've followed the recent suggestions by MS to disable the ssl 3.0 support on your system via "registry edit" of schannel and cipher suit.

The client is still trying to use SSL 3.0 which is what this error says,
The TLS error says the options available on this system do not include the ciphers for TLS that the client has.


Is the log entry from backupserver01 if not, backupserver01 is the one having an issue, check what SChannel settings it has and what ciphers for TLS does it have.
Is it also a windows 2008 or newer server, or older?
0
 
Senior IT System EngineerIT ProfessionalAuthor Commented:
BackupServer01 is a physical box running Windows Server 2008 R2
0
 
Senior IT System EngineerIT ProfessionalAuthor Commented:
No, it only have Backup Exec 2012 and also Veeam backup running.
0
 
Senior IT System EngineerIT ProfessionalAuthor Commented:
Thanks !
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.