We're having a problem here that a few hours on Google would suggest is very common but mostly unresolved.
Since upgrading to Windows 8.1, no Microsoft product can connect to any site via a secure channel, specifically TLS channels.
Internet Explorer 11 can connect to http web sites (e.g. msn), but will not connect to any https web sites (e.g. login.live.com, google). Attempting to connect to an https site results in 'This page cannot be displayed'. Other browsers, for example Firefox and Chrome, can connect to https web sites perfectly well.
On its own that wouldn't be an issue, we could just use Firefox (which is our default browser anyway), however every single Microsoft product uses the same settings and transports as Internet Explorer, and so none of those can connect to secure sites either.
This means that Windows Update won't work, and that we cannot register any Microsoft software (e.g. Office, Visual Studio, etc). Attempting to do so results in 'A communication error has occurred.'
Sometimes it gives an error code, for example attempting to activate Office gives 'A communication error has occured. Please verify that you have connectivity to the Internet and try again (0x80072F8F).
Googling that code suggests checking the BIOS date and time (we did, all correct) and resetting Internet settings (we did, to no avail).
We had the same problem crop up on Windows 7 after a Windows Update, which we fixed by going into Internet Options and disabling TLS 1.0 and re-registering some DLLs, however that hasn't fixed the issue here.
Other things we've tried are:-
Disabling SPDY/3
Disabling SSL 2.0
Every combination of enabled and disabled TLS 1.0, 1.1 and 1.2
Disabling Enhanced Protected Mode
Clearing SSL state
Uninstalling Internet Explorer 11
As I mentioned at the start, this only affects Microsoft products, anything from other companies or anything we write ourselves works perfectly, which would suggest there's some specific settings or code that Microsoft use that is the root of the issue.
Anyone else had this and managed to solve it?
I had this same problem with IE and this is what fixed it for me.
You should open a Command Prompt as Administrator and run the following commands:
regsvr32 Softpub.dll /s
regsvr32 Initpki.dll /s
regsvr32 Wintrust.dll /s
regsvr32 Mssip32.dll /s
Restart your computer and try accessing the HTTPS sites again with IE. These commands re-register the Dynamic-link library files which are called when you connect to an HTTPS site using Windows programs.
Here is the Windows support page which had this info:
https://support.microsoft.com/en-us/help/813444/you-cannot-log-in-to-or-connect-to-secured-web-sites-in-internet-explo
I had this same problem with trying to access domains in Powershell over HTTPS, but Google Chrome could access the HTTPS sites just fine on the same machine, so I knew it was a Windows-system issue and not a networking issue.
Hope this helps. Good luck!
Related
I have been facing some weird connection timeout issues in Visual Studio Code.
I am writing a simple web crawler to read a website using the requests and beautifulsoup4 packages in Python. I don't have any problem opening the URL in my web browsers (opens fine in Edge and Chrome), but when I say request.get(url), then the request always times out. Also, when I try to install some additional packages using pip, it always times out. But the corresponding PyPI page opens fine on my web browser.
The funny thing is - I am facing this issue only when I work out of my company's office. I don't have this issue at all when I am working from my home. There shouldn't be a system-wide firewall or a network firewall, because if there is, then the sites shouldn't be opening on my browsers too, right?
I went to VS Code Preferences and checked the settings there. There's no proxy set up. There is nothing specifically that would block network requests from inside VS Code. Here are some screenshots showing what VS Code Settings looks like.
I looked online and couldn't find much, since every question out there is regarding timeouts in SSH connections, which isn't relevant to me here. This official site here gives a bunch of URLs that need to be allowed by the firewall for VS Code to be able to connect to the network, but I don't know where to add them.
Is there something that I am missing? Any leads on how I can debug this issue? Or is it something that I'll have to take up with my company's network administrator?
TIA.
I am new to PostgreSQL and I have installed Postgresql 12 version for win64 from EDB website.
After the installation I tried to use pgAdmin but I ran into some issues:
With Internet Explorer I got this error "your browser was detected as Internet explorer 11. which is either deprecated or not supported by pgAdmin4"
With Google Chrome I got this error. "The server could not verify that you are authorized to access the URL requested. You either supplied the wrong credentials (e.g. a bad password), or your browser doesn't understand how to supply the credentials required."
I did what many others told to do:
Internet Explorer Enhanced Security Configuration turned off.
changed the PgAdmin default browser to chrome.
Added my default PgAdmin server to Internet Security Trusted list.
Please help !
Ran into the same issue. There is not much information about IE11 not being supported anymore. All I can see is
The following browsers are currently supported, but that support will
cease in a future release of pgAdmin. It is strongly advised that a
supported browser is used instead:
Internet Explorer 11
https://www.pgadmin.org/faq/
The followings are supported
Chrome 72
Firefox 65+
Edge 44+
Safari 12+
I have installed Edge and set it as the default browser. Now everything works as expected.
Recently deployed a Windows 2016 Standard Server, with Active Directory and Exchange 2016.
We have disabled SSL 1.0, 2.0 and 3.0 for both Server and Client, and have disabled TLS 1.0 and TLS 1.1.
We are repeatedly getting the following entry in our system log. What is causing this, and how can I fix it.
Basically we had to enable TLS 1.2 for .NET 4.x. Making this registry changed worked for me, and stopped the event log filling up with the Schannel error.
More information on the answer can be found here
Linked Info Summary
Enable TLS 1.2 at the system (SCHANNEL) level:
Windows Registry Editor Version 5.00
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Protocols\TLS 1.2]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Protocols\TLS 1.2\Client]
"DisabledByDefault"=dword:00000000
"Enabled"=dword:00000001
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Protocols\TLS 1.2\Server]
"DisabledByDefault"=dword:00000000
"Enabled"=dword:00000001
(equivalent keys are probably also available for other TLS versions)
Tell .NET Framework to use the system TLS versions:
Windows Registry Editor Version 5.00
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\.NETFramework\v4.0.30319]
"SystemDefaultTlsVersions"=dword:00000001
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\.NETFramework\v4.0.30319]
"SystemDefaultTlsVersions"=dword:00000001
This may not be desirable for edge cases where .NET Framework 4.x applications need to have different protocols enabled and disabled than the OS does.
After none of the methods I could find anywhere helped me:
I opened the Event Viewer and searched when this error started to show so often. I used filter set to Error from Schannel source. In my case, this error was happening every now and then but then, on certain date, it started to show every few seconds! I went to Settings -> Apps & features and searched if anything new was installed on this date – and bingo! It was PrivadoVPN. After uninstalling PrivadoVPN, the error stopped to show!
P.S. I’m not saying that specifically PrivadoVPN is problematic. Mybe it is something with my configuration… Just suggesting the method I used to find the root cause of the error in my case.
After making no changes to a production server we began receiving this error. After trying several different things and thinking that perhaps there were DNS issues, restarting IIS fixed the issue (restarting only the site did not fix the issue). It likely won't work for everyone but if we tried that first it would have saved a lot of time.
In my case, the Windows 2016 server where this was happening was hardened for security compliance. As a result, only specific cipher suites were allowed. This was causing an incompatibility when making HTTPS connections to highly secure endpoints (like Apple Push Notifications API aka APNS)
To fix the issue, I downloaded IIS Crypto and clicked on the Cipher Suites button on the left, to display the list of enabled/disabled cipher suites, and then clicked the "Best Practices" button and rebooted the server. Problem fixed.
I encountered this while rebuilding a server that was moving from Server 2012R2 to DataCenter 2019. It was making me crazy because I could debug it from Visual Studio just fine but IIS immediately returned a 500 error.
In my case, we have several .NET 3.5 and .NET 4.5 applications commingled on the same server and when I created the application for one of the 4.5 applications I had pointed it to the 2.0 App Pool.
Repointing it to the 4.0 App Pool resolved the issue.
I found this here: https://port135.com/schannel-the-internal-error-state-is-10013-solved/
"Correct file permissions
Correct the permissions on the c:\ProgramData\Microsoft\Crypto\RSA\MachineKeys folder:
Everyone Access: Special Applies to 'This folder only'
Network Service Access: Read & Execute Applies to 'This folder, subfolders and files'
Administrators Access: Full Control Applies to 'This folder, subfolder and files'
System Access: Full control Applies to 'This folder, subfolder and Files'
IUSR Access: Full Control Applies to 'This folder, subfolder and files'
The internal error state is 10013
After these changes, restart the server. The 10013 errors should disappear."
Recently i installed Microsoft Visual Studio 2013 Preview Ultimate on Windows 7. Everything went smoothly except now i can't access www.microsoft.com and www.skype.com anymore. Tried latest IE10 and FireFox, both show blank page when accessing the above mentioned web sites. Firefox in its left bottom corner shows that it is waiting for ajax.aspnetcdn.com.
I'd really like not to reinstall OS on my machine, so i'd appreciate any idea how to fix this. For myself i tried to stop Firewall service and disable MS Security Essentials runtime protection, neither helped.
PS: I can access www.microsoft.com and www.skype.com from another machine in the same local network
UPDATE: i am using tfs.visulstudio.com as my TFS server and it opens fine if i am not signed in. But once i am trying to log in it opens blank, like browser is waiting for something (the same as for microsoft.com and skype.com). Something related to live ID?
Don't think this is the website to post this kind of question but try uninstalling VS2013 preview because you think that's causing the problem. Search in Google for people getting similar problem. I also don't think it is VS2013 because I can't think of anyway of how VS2013 would somehow disable you from going to a certain website. Make sure the sites weren't down at the time or if you're having something kind of Internet server issues.
skype is owned by microsoft, so you can't enter both microsoft pages. This could be related with some kind of ISP (Internet Service Provider) and not with VS2013, or you can try rebooting your router. Last thing i would do is traceroute both address and see where they fall.
I wanted to write this as a comment but I don't have enough reputation yet. Anyway, obviously trying to uninstall the program and trying again would be a good start as already mentioned, but you should also look inside your hosts file for any weird redirections some virus of malware might have set up. It's located at "C:\Windows\System32\drivers\etc" and you can open this inside notepad (might require notepad to be run as an administrator). Check to see if skype.com or microsoft.com are in there and are pointing to a different IP address. If they are you can just remove them and save the file (might require a restart to take effect). If still no luck you should try a livecd of a linux distro to make sure the problem is definitely inside your windows somewhere.
Let us know how it goes.
I have a thin client running stand alone on Windows XP embedded which will be used as a information screen. Information shall be pulled from the internet (through a website) when a WLAN-connection has been succesfully established. So what I'm looking for is a way to on Windows launch, check for a working internet connection. If the connection is OK, I want to launch a website from internet in Google Chrome. If no working connection has been found, I want to launch a local website in Chrome. In pseudo-code:
if (working internet connection)
launch Chrome with internet
else
launch Chrome with local website
end
Maybe this is possible with a piece of Visual Basic? Or is there some other scripting possible? The script shall run on system startup.
In an advanced version of this script I would eventually like to create a local copy of the website automatically when there is a working connection.
All this because the WLAN connection is quite unrealible in the place where this will be used.
Thanks in advance!
This, from Randy Birch's VB.NET site, should do it:
http://vbnet.mvps.org/index.html?code/internet/internetcheckconnection.htm