Thanks guys. Schannel 36872 or Schannel 36870 on a Domain Controller ★★★★★★★★★★★★★★★ Ingolfur Arnar StangelandJanuary 5, 20092 Share 0 0 This event (and its cousin Schannel 36870) can indicate that there is a If you did NOT enroll a certificate, and your domain does NOT contain an enterprise CA, you can safely ignore this event. http://blogs.technet.com/b/asiasupp/archive/2007/03/27/tls-ssl-connection-fails-with-the-schannel-event-logged.aspx http://blogs.technet.com/b/srd/archive/2009/03/10/assessing-the-risk-of-the-schannel-dll-vulnerability-ms09-007.aspx http://technet.microsoft.com/en-us/library/cc749438%28v=ws.10%29.aspx http://blogs.technet.com/b/instan/archive/2009/10/12/changes-in-default-encryption-type-for-kerberos-pre-authentication-on-vista-and-windows-7-clients-cause-security-audit-events-675-and-680-on-windows-server-2003-dc-s.aspx Awinish Vishwakarma - MVP My Blog: awinish.wordpress.com Disclaimer This posting is provided AS-IS with no warranties/guarantees and confers no rights.Marked as answer by Sparcx Friday, September http://seforum.net/event-id/event-id-7036-not-showing-in-event-viewer.html
This willprevent server applications that expect to make use of the system defaultcredentials from accepting SSL connections.http://support.microsoft.com/default.aspx/kb/261196Bye--Luca BianchiMicrosoft MVP - SQL Serverhttp://blogs.aspitalia.com/lucabianchi SP 2007-05-25 13:43:16 UTC PermalinkRaw Message Post by Luca A certificate you want to be used for domain controller authentication should have a SAN DNS name that matches the DNS name of the domain controller (see also http://social.technet.microsoft.com/wiki/contents/articles/3824.updated-requirements-for-a-windows-server-2008-r2-domain-controller-certificate-from-a-3rd-party-ca.aspx). MCSE|MCSA:Messaging|MCTS|MCITP:Enterprise Adminitrator | My Blog Disclaimer: This posting is provided "AS IS" with no warranties or guarantees , and confers no rights. All rights reserved.Unauthorized reproduction or linking forbidden without expressed written permission. you can try this out
RE: Event ID: 36872 E1Designs (IS/IT--Management) (OP) 6 Jan 06 11:55 So how I could check to see if I am running a CA? Let me know if i did not provide enough information on this. . Make sure that the cert you've installed contains the private key, and that the NETWORK SERVICE account has Read perms to the private key. x 35 EventID.Net As per ME261196: "This event is logged when a server application (for example, Active Directory) attempts to perform a Secure Sockets Layer (SSL) connection, but no server certificate
Rebooted the machine twice never got that warning again. English: This information is only available to subscribers. This willprevent server applications that expect to make use of the system defaultcredentials from accepting SSL connections.S.O. Using UTP appliance for VPN connection to remote site.
Here's Why Members Love Tek-Tips Forums: Talk To Other Members Notification Of Responses To Questions Favorite Forums One Click Access Keyword Search Of All Posts, And More... Privacy statement © 2016 Microsoft. Join UsClose MenuExperts Exchange Browse BackBrowse Topics Open Questions Open Projects Solutions Members Articles Videos Courses Contribute Products BackProducts Gigs Live Courses Vendor Services Groups Careers Store Headlines Website Testing http://www.eventid.net/display-eventid-36872-source-Schannel-eventno-122-phase-1.htm Connected via VPN tunnel.
No active Certification Authorities found: No more data is available. 0x80070103
Join Us! *Tek-Tips's functionality depends on members receiving e-mail. weblink RE: Event ID: 36872 E1Designs (IS/IT--Management) (OP) 6 Jan 06 13:21 Tried to click it, stated that it is not an "Installed Service"Guess that sums up the issue of am I Windows Server 2003 Enterpise Edition 32 bit - ENGSQL Server 2005 Enterprise Edition 32 bit - ENGNO IIS installedIdee?SP Luca Bianchi 2007-05-25 13:30:55 UTC PermalinkRaw Message Post by SPSource: SchannelEvent ID: Applications that manage their own credentials, such as the internet information server, are not affected by this." I also get the Schannel Informational message (Event ID 36867): "Creating an SSL client A Fatal Error Occurred When Attempting To Access The Ssl Server Credential Private Key
Applications that manage their own credentials, such as the internet information server, are not affected by this."Checked here: http://support.microsoft.com/?kbid=261196But I am running Windows 2003, not 2000. An example of such an application is the directory server. You receive Event ID 36872 on a domain controller? navigate here TechNet Products IT Resources Downloads Training Support Products Windows Windows Server System Center Browser Office Office 365 Exchange Server SQL Server SharePoint Products Skype for Business See all products
event viewer, error: event id 1000, event id 1202, but with return value (5) 8. FYI, i am having 2 DC in my current office and other 10 DC's in remote site. 1 forest and 1 domain. Edited by Sandesh Dubey Thursday, September 27, 2012 8:42 AM Thursday, September 27, 2012 8:40 AM Reply | Quote 0 Sign in to vote I just run "certutil -config - -ping"
Thanks Everyone Red Flag This Post Please let us know here why this post is inappropriate. Also make sure that the certificate is installed in the Local Computer Personal store, and not the Personal store corresponding to a user account such as administrator. 0 Message Author Also, why would the server randomly try to use a secure connection?Thanks RE: Event ID: 36872 MTVW (IS/IT--Management) 6 Jan 06 13:03 Certificate Authority Server. Are you a data center professional?
Reasons such as off-topic, duplicates, flames, illegal, vulgar, or students posting their homework. Event ID: 36872 Source: Schannel Source: Schannel Maintenance: Recommended maintenance tasks for Windows servers Type: Warning Description:No suitable default server credential exists on this system. Great.. his comment is here TheEventId.Net for Splunk Add-onassumes thatSplunkis collecting information from Windows servers and workstation via the Splunk Universal Forwarder.
Thursday, September 27, 2012 8:52 AM Reply | Quote 0 Sign in to vote Hello, if you do not work with a CA in your domain, then you can ignore this When you start a newly promoted Windows Server 2003 domain controller, you receive Event IDs 40960 and 40961? I am getting this error in event viewer and I think it is affecting my Exchange ADC: "Source: Schannel Type: Warning Event ID: 36872 No suitable default Article by: Lee On July 14th 2015, Windows Server 2003 will become End of Support, leaving hundreds of thousands of servers around the world that still run this 12 year old
If you are not a registered user on Windows IT Pro, click Register. dBforumsoffers community insight on everything from ASP to Oracle, and get the latest news from Data Center Knowledge. Warning in Event Viewer about Netlogon Event ID: 5782 and about DHCP service Event ID: 1002 6.