none
Error 36888 Schannel : The following fatal alert was generated: 10. The internal error state is 1203.

    Question

  • Hi ,

    We have Exchange 2010 SP2 with all roles installed in one windows 2008 R2 server.

    We have renewed our SSL Certificate for Exchnage beofore few days.

    And we got following error in event  Viewer.

    Error 36888 Schannel : The following fatal alert was generated: 10. The internal error state is 1203.

    - <System>
      <Provider Name="Schannel"
    Guid
    ="{1F678132-5938-4686-9FDC-C8FF68F15C85}" />
      <EventID>36888</EventID>
    <Version>0</Version>
    <Level>2</Level>
    <Task>0</Task>
    <Opcode>0</Opcode>
    <Keywords>0x8000000000000000</Keywords>
    <TimeCreated
    SystemTime="2012-03-26T05:03:01.729897900Z" />
      <EventRecordID>177401</EventRecordID>
    <Correlation />
    <Execution ProcessID="504" ThreadID="8948" />
      <Channel>System</Channel>
    <Computer>myexchange.adserver.local</Computer>
    <Security UserID="S-1-5-18" />
      </System>
    - <EventData>
      <Data Name="AlertDesc">10</Data>
    <Data Name="ErrorState">1203</Data>
    </EventData>

     </Event>

    __________________________________________________________

    Pls help

    Thanks

    Prakash

    • Edited by p.th Monday, March 26, 2012 8:56 AM
    Monday, March 26, 2012 8:54 AM

Answers

  • The key part is that you can ignore the error. I see these all the time.

    Monday, March 26, 2012 11:57 AM
    Moderator
  • This event is expected as the client is trying to use the wrong port or the wrong protocol to access the site

    So if a user tries to reach owa using http in stead of https, you would get this event (Unless you have configure forwarding from http to https on the server).

    Monday, March 26, 2012 7:01 PM

All replies

  • The errors are coming from Windows Server 2008 R2 (IIS to be more particular).

    If a user tries to access a web site using HTTP but specifies an SSL port in the URL then this event is logged.

    This event is expected as the client is trying to use the wrong port or the wrong protocol to access the site

    The error 1203 indicates invalid ClientHello from the client.

    This is By design and you can ignore this warning.

    This question has been asked and answered several times in the last few weeks. A search would have answered your question quicker.

    To remove the errors you can use following article:

    http://support.microsoft.com/kb/260729

    Monday, March 26, 2012 9:26 AM
  • Hi Killerbe,

    Thanks for your reply. I have searched lot before posting into forum. and i know the error can be disabled.but we need to find its root cause.

    We are using Exchange since long time and never face this type of error.

    and this type of error started before a week.

    We have renewed our exchange SSL before few days.

    Is it related to exchange SSL ??

    Thanks

    Prakash




    • Edited by p.th Monday, March 26, 2012 11:29 AM
    Monday, March 26, 2012 11:28 AM
  • The key part is that you can ignore the error. I see these all the time.

    Monday, March 26, 2012 11:57 AM
    Moderator
  • This event is expected as the client is trying to use the wrong port or the wrong protocol to access the site

    So if a user tries to reach owa using http in stead of https, you would get this event (Unless you have configure forwarding from http to https on the server).

    Monday, March 26, 2012 7:01 PM