question

dlogan-3358 avatar image
0 Votes"
dlogan-3358 asked CarlFan-MSFT answered

Enforcing TLS 1.2 - EventViewer full of Event 36871 (fatal error while creating TLS client credential)

I'm trying to disable all protocols below TLS 1.2. I've implemented the following registry settings:

99880-2021-05-26-10-08-19-group-policy-management-editor.png


But I continue to get tons of these errors in EventViewer:

99886-2021-05-26-10-08-48-event-viewer.png


windows-10-security
5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

1 Answer

CarlFan-MSFT avatar image
0 Votes"
CarlFan-MSFT answered

Hi,
This is usually related to disabling of weak ciphers. Try to enable TLS 1.2 for .NET 4.x by making this registry changed.
https://blog.matrixpost.net/a-fatal-error-occurred-while-creating-a-tls-client-credential-the-internal-error-state-is-10013/
After that you could try to modify the group policy below:
https://port135.com/schannel-the-internal-error-state-is-10013-solved/
Hope this helps and please help to accept as Answer if the response is useful.
Best Regards,
Carl

5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.