I'm working on a product that is deployed in a FedRAMP environment and consists of a mix of API services implemented on Windows and Linux as well as a web application running on IIS. The web application sends REST requests to the API services, but I receive this error: "Could not create SSL/TLS secure channel". I'm using TLS 1.2 for these REST requests.
If I send the same API request in Powershell (e.g. Invoke-RestMethod), I receive the same TLS channel error. However, sending that same REST request using curl.exe (mingw library) from a command prompt succeeds with no error. The fact that the curl request succeeds leads me to think that the problem is not related to a certificate issue or something related to the networking infrastructure between the windows web server and the windows/linux api servers.
I've been unable to identify the cause of the error. The cipher being used for the TLS connection is in the allowed set defined in the registry (\SYSTEM\CurrentControlSet\Control\Cryptography\Configuration\Local\SSL\00010002). I don't find any indication that the problem is related to the certificates being used.
What could be causing this TLS connection error from .Net-based applications while 'raw' requests (via curl.exe) succeed?
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(9.6, 4%, 10%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ESL%3C/text%3E%3C/svg%3E)
