Could not create SSL/TLS secure channel
After clicking Gather Info, an error is displayed stating
Symptoms
Any of the following:
- After clicking Gather Info, an error is displayed stating Could not create SSL/TLS secure channel.
- Gather Info succeeds, but during Initialise at the Enabling Relay Server step the error is shown in the output window: Could not create SSL/TLS secure channel.
Solution:
Follow the 5 steps below.
- Click “Start”, type “Run”, press enter, type “regedit.exe”
- Select:
“HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Cryptography\Configuration\Local\SSL0010002\Functions”
- Right click “Functions”, click “Modify”
- Configure the “Value data” list, by finding the following Cryptography Keys “TLS_DHE_DSS_WITH_3DES_EDE_CBC_SHA”
“TLS_DHE_RSA_WITH_3DES_EDE_CBC_SHA”
“TLS_DHE_DSS_WITH_AES_128_CBC_SHA”
“TLS_DHE_RSA_WITH_AES_128_CBC_SHA”
“TLS_DHE_DSS_WITH_AES_256_CBC_SHA”
“TLS_DHE_RSA_WITH_AES_256_CBC_SHA”
and cutting them from the list and pasting them at the bottom of the list.
Before configuration | After configuration | ||||||||||||||||
TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384_P256 | TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384_P256 | ||||||||||||||||
TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384_P384 | TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384_P384 | ||||||||||||||||
TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256_P256 | TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256_P256 | ||||||||||||||||
TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256_P384 | TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256_P384 | ||||||||||||||||
TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA_P256 | TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA_P256 | ||||||||||||||||
TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA_P384 | TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA_P384 | ||||||||||||||||
TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA_P256 | TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA_P256 | ||||||||||||||||
TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA_P384 | TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA_P384 | ||||||||||||||||
TLS_DHE_RSA_WITH_AES_256_GCM_SHA384 | TLS_DHE_RSA_WITH_AES_256_GCM_SHA384 | ||||||||||||||||
TLS_DHE_RSA_WITH_AES_128_GCM_SHA256 | TLS_DHE_RSA_WITH_AES_128_GCM_SHA256 | ||||||||||||||||
TLS_DHE_RSA_WITH_AES_256_CBC_SHA | TLS_RSA_WITH_AES_256_GCM_SHA384 | ||||||||||||||||
TLS_DHE_RSA_WITH_AES_128_CBC_SHA | TLS_RSA_WITH_AES_128_GCM_SHA256 | ||||||||||||||||
TLS_RSA_WITH_AES_256_GCM_SHA384 | TLS_RSA_WITH_AES_256_CBC_SHA256 | ||||||||||||||||
TLS_RSA_WITH_AES_128_GCM_SHA256 | TLS_RSA_WITH_AES_128_CBC_SHA256 | ||||||||||||||||
TLS_RSA_WITH_AES_256_CBC_SHA256 | TLS_RSA_WITH_AES_256_CBC_SHA | ||||||||||||||||
TLS_RSA_WITH_AES_128_CBC_SHA256 | TLS_RSA_WITH_AES_128_CBC_SHA | ||||||||||||||||
TLS_RSA_WITH_AES_256_CBC_SHA | TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384_P384 | ||||||||||||||||
TLS_RSA_WITH_AES_128_CBC_SHA | TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256_P256 | ||||||||||||||||
TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384_P384 | TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256_P384 | ||||||||||||||||
TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256_P256 | TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384_P384 | ||||||||||||||||
TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256_P384 | TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256_P256 | ||||||||||||||||
TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384_P384 | TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256_P384 | ||||||||||||||||
TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256_P256 | TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA_P256 | ||||||||||||||||
TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256_P384 | TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA_P384 | ||||||||||||||||
TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA_P256 | TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA_P256 | ||||||||||||||||
TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA_P384 | TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA_P384 | ||||||||||||||||
TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA_P256 | TLS_DHE_DSS_WITH_AES_256_CBC_SHA256 | ||||||||||||||||
TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA_P384 | TLS_DHE_DSS_WITH_AES_128_CBC_SHA256 | ||||||||||||||||
TLS_DHE_DSS_WITH_AES_256_CBC_SHA256 | TLS_RSA_WITH_3DES_EDE_CBC_SHA | ||||||||||||||||
TLS_DHE_DSS_WITH_AES_128_CBC_SHA256 | TLS_RSA_WITH_RC4_128_SHA | ||||||||||||||||
TLS_DHE_DSS_WITH_AES_256_CBC_SHA | TLS_RSA_WITH_RC4_128_MD5 | ||||||||||||||||
TLS_DHE_DSS_WITH_AES_128_CBC_SHA | TLS_RSA_WITH_NULL_SHA256 | ||||||||||||||||
TLS_RSA_WITH_3DES_EDE_CBC_SHA | TLS_RSA_WITH_NULL_SHA | ||||||||||||||||
TLS_DHE_DSS_WITH_3DES_EDE_CBC_SHA | SSL_CK_RC4_128_WITH_MD5 | ||||||||||||||||
TLS_RSA_WITH_RC4_128_SHA | SSL_CK_DES_192_EDE3_CBC_WITH_MD5 | ||||||||||||||||
TLS_RSA_WITH_RC4_128_MD5 | TLS_DHE_DSS_WITH_AES_256_CBC_SHA | ||||||||||||||||
TLS_RSA_WITH_NULL_SHA256 | TLS_DHE_DSS_WITH_AES_128_CBC_SHA | ||||||||||||||||
TLS_RSA_WITH_NULL_SHA | TLS_DHE_DSS_WITH_3DES_EDE_CBC_SHA | ||||||||||||||||
SSL_CK_RC4_128_WITH_MD5 | TLS_DHE_RSA_WITH_AES_256_CBC_SHA | ||||||||||||||||
SSL_CK_DES_192_EDE3_CBC_WITH_MD5 | TLS_DHE_RSA_WITH_AES_128_CBC_SHA | ||||||||||||||||
- “Restart” the server.