Event ID 36887, Schannel 45

Similar Messages

• Event ID 36887 Schannel - fatal alert code 49

  Use process explorer and refer to the PID in the event log. This should at least tell you what program is creating the event, narrowing down the cause a bit.

  Windows Server 2012 R2 Hyper-V VM Fileserver.
  Have these errors happening consistently in event viewer every 2 to 3 minutes.
  Am not running web server, just a file server.
  Any ideas on how to track this down?
  Not seeing much info on 36887 with code "49"
  Anyone else had/solved this problem?
  This topic first appeared in the Spiceworks Community

• Schannel errors on three of my DC's; Event ID 36887, Alert 46

  I too am recieving the elusive schannel errors on three of my DC's, Event ID 36887, Alert 46. They only happen occasionally, at seemingly arbitrary times.
  All three are Domain Controllers only; no IIS installed, no Exchange servers. No one logs in to these and browses from them (yes, I checked the event logs). There are no third party browsers installed. I have even tried disabling TLS
  in the IE settings, no luck (not sure how or wy that would even work).
  I have read as many forum posts as I can on this, and am still no closer to understanding what is going on.
  How do I track this down?
  EventID : 36887
  MachineName : DCXY.Domain.us
  Data : {}
  Index : 27206
  Category : (0)
  CategoryNumber : 0
  EntryType : Error
  Message : The following fatal alert was received: 46.
  Source : Schannel
  ReplacementStrings : {46}
  InstanceId : 36887
  TimeGenerated : 3/26/2012 7:21:36 AM
  TimeWritten : 3/26/2012 7:21:36 AM
  UserName : NT AUTHORITY\SYSTEM
  Thanks!

  I REALLY NEED HELP! I AM NEW TO THIS LAPTOP, AND I DO NOT UNDERSTAND THIS IN MY EVENT VIEWER, IT SHOWS FATAL ERROR:
  Provider
  Name]
  Schannel
  Guid]
  {1F678132-5938-4686-9FDC-C8FF68F15C85}
  EventID
  36887
  Version
  0
  Level
  2
  Task
  0
  Opcode
  0
  Keywords
  0x8000000000000000
  TimeCreated
  SystemTime]
  2014-01-12T21:23:37.220815100Z
  EventRecordID
  5190
  Correlation
  Execution
  ProcessID]
  660
  ThreadID]
  6336
  Channel
  System
  Computer
  5CD3182MR2
  Security
  UserID]
  S-1-5-18
  EventData
  AlertDesc
  40
  I REALLY NEED HELP WITH THIS I AM ON A NEW LAPTOP AND DONT UNDERSTAND!! PLEASE ADVISE OR HELP!!

• Schannel errors on our Primary DC's; Event ID 36887, Alert 46

  I have one of my 4 Domain Controllers that is getting this EventID 36887 error every 60 seconds since our DC cert auto-renewed itself.  The internal CA is running on an non-DC server.  How do I determine what's triggering this alert so that I can
  squash it?  This alert is from the System Event logs on our Primary 2008 R2 DC (ORLDC01.cnlgroup.com).
  Log Name:      System
  Source:        Schannel
  Date:          1/13/2014 5:06:56 PM
  Event ID:      36887
  Task Category: None
  Level:         Error
  Keywords:     
  User:          SYSTEM
  Computer:      ORLDC01.cnlgroup.com
  Description:
  The following fatal alert was received: 46.
  Event Xml:
  <Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event">
    <System>
      <Provider Name="Schannel" Guid="{1F678132-5938-4686-9FDC-C8FF68F15C85}" />
      <EventID>36887</EventID>
      <Version>0</Version>
      <Level>2</Level>
      <Task>0</Task>
      <Opcode>0</Opcode>
      <Keywords>0x8000000000000000</Keywords>
      <TimeCreated SystemTime="2014-01-13T22:06:56.581253200Z" />
      <EventRecordID>493191</EventRecordID>
      <Correlation />
      <Execution ProcessID="552" ThreadID="1848" />
      <Channel>System</Channel>
      <Computer>ORLDC01.cnlgroup.com</Computer>
      <Security UserID="S-1-5-18" />
    </System>
    <EventData>
      <Data Name="AlertDesc">46</Data>
    </EventData>
  </Event>

  Hi,
  Based on my research, the error code which means certificate_unknown(46), to find out what triggered this alert. I think you need capture a network trace while getting this error. More information please refer below article:
  How to use Network Monitor to capture network traffic
  http://blogs.msdn.com/b/ssasfaq/archive/2012/09/17/how-to-use-network-monitor-to-capture-network-traffic.aspx
  If there have no impact related this error, we can safely ignore this error. Otherwise, to address this error we might need capture ETL trace and networks trace. It is not an efficient way to work in this community since we may need more resources, if need
  further troubleshooting I would like to suggest you submit a service request to MS Professional tech support service so that a dedicated Support Professional can further assist with this request.
  Please visit the below link to see the various paid support options that are available to better meet your needs.
  http://support.microsoft.com/default.aspx?id=fh;en-us;offerprophone
  Thanks

• Schannel Event id 36887 - alert code 42 - every 10 seconds

  Hello,
  We 've just installed a new Lync 2013 front end server  (standard) on Windows 2012 R2, migrating from Lync server 2010.
  After moving users to new pool, we got many Schannel errors - every 10 seconds.
  event id 36887
  "A fatal alert was received from the remote endpoint. The TLS protocol defined fatal alert code is 42"
  No user is complaining about any trouble but I would like to get ride of those errors.
  Thanks in advance for any input.
  Pierro.

  Most likely these are the certificates that were assigned from your lync 2010 to your clients and are not trusted by lync 2013. you can verify that by using get-csclientcertificate and see the certificates assgined to users.

• Event log 36887

  I receive the following event.....
  A fatal alert was received from the remote endpoint. The TLS protocol defined fatal alert code is 42. I cannot find much information on this. does anyone have any insight?
  Thank you

  Hi,
  Did there run IIS on the server? This error message indicates the computer received an SSL fatal alert message from the server. It may be caused by accessing web site or the installation of third party web browsers or others. Did you remember any specific
  operation that had been done before this issue occurred? For examples, install any third-party application or others? Please refer to following thread and check if can help you.
  Event ID: 36887 Source: Schannel, Error: The following
  fatal alert was received: 0.
  In addition, please also refer to following KB and enable Schannel event logging, then check if get more clues.
  How to enable Schannel event logging in IIS
  If any update, please feel free to let me know.
  Hope this helps.
  Best regards,
  Justin Gu
  Please remember to mark the replies as answers if they help and unmark them if they provide no help. If you have feedback for TechNet Support, contact [email protected]

• Event ID 36888 - Schannel - A fatal alert was generated and sent to the remote endpoint.

  Exchange 2013:  2 x multi-role in one DAG - on-premise
  Performing remote mailbox migration using internet (*non-exchange web-based  tool*), to ship data from cloud Ex2010 server to Ex013 on-premise.
  Have multiple failures when doing the mailbox data copy - my migration tool error code tells me that:
  This error indicates that we were unable to authenticate to the source or destination mailbox and retrieve a list of folders when given 15
  minutes to complete these operations. This may be because the source or destination is unusually slow, has a very large number of folders, or due to "hanging" networking calls.
  Some mailboxes are copying, but around 80% are not.  Checked all permissions and other factors.
  I see in the System event log the following below:
  Log Name:      System
  Source:        Schannel
  Date:          9/14/2013 2:14:53 PM
  Event ID:      36888
  Task Category: None
  Level:         Error
  Keywords:      
  User:          SYSTEM
  Computer:      server.domain.local
  Description:
  A fatal alert was generated and sent to the remote endpoint. This may result in termination of the connection. The TLS protocol defined fatal error code is 10. The Windows SChannel error state is 1203.
  Event Xml:
  <Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event">
    <System>
      <Provider Name="Schannel" Guid="{1F678132-5938-4686-9FDC-C8FF68F15C85}" />
      <EventID>36888</EventID>
      <Version>0</Version>
      <Level>2</Level>
      <Task>0</Task>
      <Opcode>0</Opcode>
      <Keywords>0x8000000000000000</Keywords>
      <TimeCreated SystemTime="2013-09-14T20:14:53.699840000Z" />
      <EventRecordID>135625</EventRecordID>
      <Correlation />
      <Execution ProcessID="544" ThreadID="17928" />
      <Channel>System</Channel>
      <Computer>server.domain.local</Computer>
      <Security UserID="S-1-5-18" />
    </System>
    <EventData>
      <Data Name="AlertDesc">10</Data>
      <Data Name="ErrorState">1203</Data>
    </EventData>
  </Event>
  Anyone seen this? - not much recording this error available for Ex2013.

  Hello,
  Thank you for your post.
  This is a quick note to let you know that we are performing research on this issue.
  If you have feedback for TechNet Subscriber Support, contact
  [email protected]
  Simon Wu
  TechNet Community Support
  Hi Simon
  I opened a SEV B case  today.  Appears to directly reflect the amount of load i put through, in terms of data being shipped with our migration tool.  That tool is basically logging into each mailbox using a superuser account and populating
  it with mail and calendar data form a source cloud mailbox.  No fancy co-existence or online move requests.
  All throttle policies are removed.  Attempting to migrate more than 20 mailboxes at a time results in the System Event log being filled with the Schannel error above.  Reducing the amount below this still shows the errors appearing, but not enough
  to stop mailbox data being shipped and the migration tool suffering a stop error.
  I will update the thread tomorrow when i speak with the engineer.  Surprised noone has had any input so far.
  I have the same problem, here is some data. I have two exchange profiles and the 2nd one stops logging in after this error starts. I have to reset the wireless connection and restart outlook to clear the situation.
  Dave Ladouceur

• Exchange 2013 event ID 36888 SChannel error 12 and 1203

  I am running Windows Server 2012 STD with Exchange 2013 installed on the same server. I know that Microsoft doesnt recommend to do this, but I had no choice. Errors are follow:
  A fatal alert was generated and sent to the remote endpoint. This may result in termination of the connection. The TLS protocol defined fatal error code is 10. The Windows SChannel error state is 12.
  A fatal alert was generated and sent to the remote endpoint. This may result in termination of the connection. The TLS protocol defined fatal error code is 10. The Windows SChannel error state is 1203.
  - System
  - Provider
  [ Name] Schannel
  [ Guid] {1F678132-5938-4686-9FDC-C8FF68F15C85}
  EventID 36888
  Version 0
  Level 2
  Task 0
  Opcode 0
  Keywords 0x8000000000000000
  - TimeCreated
  [ SystemTime] 2014-11-25T23:30:34.120233400Z
  EventRecordID 121125
  Correlation
  - Execution
  [ ProcessID] 1064
  [ ThreadID] 20184
  Channel System
  Computer server
  - Security
  [ UserID] S-1-5-18
  - EventData
  AlertDesc 10
  ErrorState 12
  System
  - Provider
  [ Name] Schannel
  [ Guid] {1F678132-5938-4686-9FDC-C8FF68F15C85}
  EventID 36888
  Version 0
  Level 2
  Task 0
  Opcode 0
  Keywords 0x8000000000000000
  - TimeCreated
  [ SystemTime] 2014-11-26T05:45:22.650086300Z
  EventRecordID 121230
  Correlation
  - Execution
  [ ProcessID] 1064
  [ ThreadID] 45336
  Channel System
  Computer SERVER
  - Security
  [ UserID] S-1-5-18
  - EventData
  AlertDesc 10
  ErrorState 1203
  Process ID 1064 is Isass.exe
  I found somewhere that error 1203 could be ignored, but nothing about error 12. 
  Server is running with selfsigned SAN certificate, hosted 2 exchange domains (10 mailboxes, 5 local, 5 linked for remote domain connected via external 2 way non transitive domain trust).
  Thank you very much for any advise.
  Regards,
  Jan
  Šerý

  Hi Jan,
  Based on my research for the Event 36888, the issue may be caused by not standard or corrupted behavior of web browsers or users, such as user use HTTP protocol to access Exchange service which is a SSL site on port 443.
  Please check whether there is a HTTP redirect configured in your IIS Manager of Exchange server. Also reset web browsers to have a try. Here are some similar thread for this issue:
  https://social.technet.microsoft.com/Forums/forefront/en-US/92c63737-c2a3-41f7-8878-3b0cf5ee95ff/new-install-event-log-schannel-event-id-36888?forum=Forefrontedgegeneral
  http://ficility.net/2013/10/21/exchange-2013-exchange-2010-windows-server-2012-schannel-event-id36888-1203-tlsssl-error-the-root-cause/
  Note: Microsoft is providing this information as a convenience to you. The sites are not controlled by Microsoft. Microsoft cannot make any representations regarding the quality, safety, or suitability of any software or information found there. Please make
  sure that you completely understand the risk before retrieving any suggestions from the above link.
  Regards,
  Winnie Liang
  TechNet Community Support

• Schannel. Event ID 36886, 36887.

  Hi!
  After installing ADCS I've got warnings on both domain controllers (Win 2008 R2):
  Event ID :- 36886
  Source :-   Schannel
  Description :-
  No suitable default server credential exists on this system. This will prevent server applications that expect to make use of the system default credentials from accepting SSL connections. An example of such an application is the directory server. Applications
  that manage their own credentials, such as the internet information server, are not affected by this.
  I've noticed that controllers have not received a certificate from CA. When I requested certificate manually, I've got the following error:
  Event ID :- 36887
  Source :-   Schannel
  The following fatal alert was received: 46.
  When I removed the requested certificate, the error (id36887) was replaced by warning (id36886).  Does someone have the same issue?

  Guid]
  {1F678132-5938-4686-9FDC-C8FF68F15C85}
  EventID
  36887
  Version
  0
  Level
  2
  Task
  0
  Opcode
  0
  Keywords
  0x8000000000000000
  TimeCreated
  SystemTime]
  2014-01-12T21:23:37.220815100Z
  EventRecordID
  5190
  Correlation
  Execution
  ProcessID]
  660
  ThreadID]
  6336
  Channel
  System
  Computer
  5CD3182MR2
  Security
  UserID]
  S-1-5-18
  EventData
  AlertDesc
  40
  HI, I HAVE RECEIVED THIS ERROR, I DONT UNDERSTAND ANY OF IT, IT SHOWS THAT ITS A FATAL ERROR, AN I AM JUST VIEWING THIS IN EVENT VIEWER!! I HAVE A NEW LAPTOP AND REALLY NEED HELP IF SOMEONE CAN ASSIST ME I WOULD APPRECIATE IT!! I SEEE I AM NOT ALONE

• Continuous "36888 Schannel Errors" in System Event Log when NOT connected to Internet

  We are hoping someone will be able to assist with us this very strange issue please ?
  We are using Windows 8.1 x64 Enterprise with Office 2013 and the latest Symantec Endpoint Proctecion v12.1.5 installed. They are managed using SCCM2012 in a large AD domain environment
  When our workstations are NOT connected to the internet (only local intranet) the following errors appear in SYSTEM event log almost continuously (several times a minute).
  Event ID:36888  User: SYSTEM  OpCode:Info  Level:Error  Source:SChannel 
  "A fatal alert was generated and sent to the remote endpoint. This may result in termination of the connection. The TLS protocol defined fatal error code is 70. The Windows Schannel error state is 11."
  The process associated with these events is "Local Security Authority Process"
  When an internet connection is enabled for these machines these 36888 errors will suddenly stop !.
  An event "Error 36887 "A fatal alert was received from the remote endpoint. The TLS protocol defined fatal alert code is 40." Is also occurring on these machines but only occasionally.
  As a result, We suspect there must be a process continuously attempting to connect to an internet service and failing ?.
  Some of the things we have tried so far;
  - We have disabled all non-essential services (e.g. Windows Store Service) one by one but this didn't fix.
  - We have tried disabling Tile updates on Start 
  - We have tried a bunch of different Group Policy settings to disable different combinations of TLS/SSL in IE config.
  - We have searched the internet forums and tried some suggested fixes but this combination of error state and error code seems unique ?.
  It doesn't happen on our Windows 7 x64 workstations that have much same apps & configuration.
  Any advice or suggestions would be greatly appreciated !
  Thanks.

  Hi Makes006,
  This Event ID 36888 occurs if a user tries to access a web site using HTTP but specifies an SSL port in the URL.
  We can try clean boot to troubleshoot whether this issue is caused by a third party program .
  How to perform a clean boot in Windows
  http://support.microsoft.com/kb/929135
  If there is no sensible impacts on operating the machines ,we can try to disable this log by modify the following registry key value to 0.
  HKEY_LOCAL_MACHINE\System\CurrentControlSet\Control\SecurityProviders\SCHANNEL\EventLogging
  For more information, please refer to the following link:
  How to enable Schannel event logging in IIS
  http://support.microsoft.com/kb/260729
  Regards,
  Please remember to mark the replies as answers if they help, and unmark the answers if they provide no help. If you have feedback for TechNet Support, contact [email protected]

• ID: 36887; source: Schannel "fatal alert was recieved; 49"

  at my eventlog i get only one error - the following error one:
  "the following fatal alert was recieved; 49"
  Log Name : System
  Source: Schannel
  Event ID: 36887
  Level: Error
  User: System
  The notification comes irregularly over again
  I did a some intensive research but I can't find hints for alert 49.
  Anybody has a hint to solve the problem ?
  _________________________________________________ assist others - and you can hope of help at self

  Hi,
  Thanks for posting in Microsoft TechNet forums.
  I would appreciate if you can help clarify the following questions:
  When did this issue begin to occur?
  Have you experience any low performance since came across this event error?
  Is this a client inside a domain?
  Please refer to this thread,
  it seems this issue have something to do with security software or exchange server related client.
  At this point, I suggest we prepare
  clean boot to test.
  Best Regards
  Magon Liu
  TechNet Subscriber Support
  in forum. If you have any feedback on our support, please contact
  [email protected]
  Please remember to click “Mark as Answer” on the post that helps you, and to click “Unmark as Answer” if a marked post does not actually answer your question. This can be beneficial to other community members reading the thread. ”

• SSMS Errors and event id 36888 and 36882

  Hallo to everybody,
  I'm facing a tricky situation from which I'm not able to come out.
  Because of an Hard Drive failure, I had to rebuild my workstation.
  Apart from the hard drive changed, both hardware and software environment are the same as before, when everything was working correctly. I'm using Windows server 2012 R2 as O/S, and a series of MS software, among them, the last three releases of SQL Server
  (2008R2, 2012 and 2014).
  But differently from first setup, now because of the hurry to rebuild the system, I installed all the software without taking care of the "chronological" order. Meaning I installed SQL Server 2014 as first, then 2012 and 2008R2 as last one.
  My system is joined to a domain and, summarizing, everything works correctly (as before hard drive failure) but the ability to connect to remote (within domain) SQL Server instances through any of the SSMS edition.
  When I try, I get strange behaviour, like errors while connecting (sometimes), errors while retrieving data (right click on a table and EDIT top <n> rows), or sometimes even a partially filled grid without any error. For partially filled, I mean a
  result set in which not all requested rows are returned.
  The common elements are: The error source in message box is always "System.Data" and the error message is "Internal connection fatal error".
  Below you can find a more detailed technical description of the error message.
  After some investigation, I found that in correspondence to any of these user interface errors, other errors messages are logged in System Event Log in this sequence:
  1) Event 36888 source Schannel:
  A fatal alert was generated and sent to the remote endpoint. This may result in termination of the connection. The TLS protocol defined fatal error code is 48. The Windows SChannel error state is 552.
  1) Event 36882 source Schannel:
  The certificate received from the remote server was issued by an untrusted certificate authority. Because of this, none of the data contained in the certificate can be validated. The SSL connection request has failed. The attached data contains the server
  certificate.
  Needless to say, SQL Connections are NOT configured to be encrypted, neither on client nor on servers, SSL certificates are the self generated ones, so there should be no reason at all for these errors.
  I already browsed the Internet searching for a solution, but I was not able to find something matching my situation. For instance, the closest one that talk about "wrong synonym definition" is not valid in my case, as there
  are no wrong synonym.  
  I strongly hope that someone of you could be helpful before I decide to start reformatting and reinstalling everything from scratch keeping the "correct" order during installation.
  Thank you in advance,
  ===================================
  Internal connection fatal error. (System.Data)
  Program Location:
     at System.Data.SqlClient.TdsParser.TryRun(RunBehavior runBehavior, SqlCommand cmdHandler, SqlDataReader dataStream, BulkCopySimpleResultSet bulkCopyHandler, TdsParserStateObject stateObj, Boolean& dataReady)
     at System.Data.SqlClient.SqlDataReader.TryCloseInternal(Boolean closeReader)
     at System.Data.SqlClient.SqlDataReader.Close()
     at Microsoft.SqlServer.Management.Smo.DataProvider.Close()
     at Microsoft.SqlServer.Management.UI.VSIntegration.ObjectExplorer.NavigableItemBuilder.NavigableItemBuilderDataReader.Close()
     at Microsoft.SqlServer.Management.UI.VSIntegration.ObjectExplorer.NavigableItemBuilder.NavigableItemBuilderDataReader.System.IDisposable.Dispose()
     at Microsoft.SqlServer.Management.UI.VSIntegration.ObjectExplorer.NavigableItemBuilder.BuildDynamicItemWithQuery(IList`1 nodes, INodeInformation source, INavigableItem sourceItem, String urnQuery, Boolean registerBuilder, Boolean registerBuiltItems)
     at Microsoft.SqlServer.Management.UI.VSIntegration.ObjectExplorer.NavigableItemBuilder.BuildDynamicItem(IList`1 nodes, INodeInformation source, INavigableItem sourceItem, IFilterProvider filter)
     at Microsoft.SqlServer.Management.UI.VSIntegration.ObjectExplorer.NavigableItemBuilder.Build(IList`1 nodes, INodeInformation source, INavigableItem sourceItem, IFilterProvider filter)
     at Microsoft.SqlServer.Management.UI.VSIntegration.ObjectExplorer.NonContextFilterNavigableItemBuilder.Build(IList`1 targetList, INodeInformation source, INavigableItem sourceItem, IFilterProvider filter)
     at Microsoft.SqlServer.Management.UI.VSIntegration.ObjectExplorer.NavigableItem.RequestChildren(IGetChildrenRequest request)
     at Microsoft.SqlServer.Management.UI.VSIntegration.ObjectExplorer.ExplorerHierarchyNode.BuildChildren(WaitHandle quitEvent)

  Hello,
  Since you installed in that order, I would try to update the SQL Server 2012 instance to the latest service pack. I would update all the instances to the latest service pack too.
  http://www.microsoft.com/en-us/download/details.aspx?id=43340
  Hope this helps.
  Regards,
  Alberto Morillo
  SQLCoffee.com

• RDS 2012 - Slow Perforamance, random disconnects - The RDP protocol component X.224 detected an error (0) in the protocol stream and the client was disconnected.

  We have an RDS environment configured on server 2012 with approx. 20 users connecting for remote app utilization across 4 different locations that are connected via VPN. Server 2012 has great resources from the virtual host so system resource allocation
  shouldn't be an issue. I'm thinking these errors are correlating with the performance problems. Any recommendations on how to effectively end these errors or to boost performance?
  RDS Log File
  Log Name:      Microsoft-Windows-RemoteDesktopServices-RdpCoreTS/Operational
  Source:        Microsoft-Windows-RemoteDesktopServices-RdpCoreTS
  Date:          3/3/2015 7:47:51 PM
  Event ID:      97
  Task Category: RemoteFX module
  Level:         Warning
  Keywords:     
  User:          NETWORK SERVICE
  Computer:      REMOTE1.mzltg.local
  Description: The RDP protocol component X.224 detected an error (0) in the protocol stream and the client was disconnected.
  System Log Error Log Name:      System
  Source:        Schannel
  Date:          3/4/2015 10:42:02 AM
  Event ID:      36887
  Task Category: None
  Level:         Error
  Keywords:     
  User:          SYSTEM
  Computer:      REMOTE1.mzltg.local
  Description: A fatal alert was received from the remote endpoint. The TLS protocol defined fatal alert code is 49.

  Hi Shane,
  Do you have any progress at the moment?
  Regarding the TLS error code 49, it indicates a valid certificate was received, but when access control was applied, the sender did not proceed with negotiation.
  More information for you:
  SSL/TLS Alert Protocol & the Alert Codes
  http://blogs.msdn.com/b/kaushal/archive/2012/10/06/ssl-tls-alert-protocol-amp-the-alert-codes.aspx
  Best Regards,
  Amy
  Please remember to mark the replies as answers if they help and un-mark them if they provide no help. If you have feedback for TechNet Subscriber Support, contact [email protected]

• Exchange 2010 SP3 - schanell errors

  Hi there.
  Exchange 2010 SP3 with latest CU (v8 i think). It's installed on Domain Controller (I know, not recommened - LONG STORY).
  We recieved "a lot of Schanell" errors in the past days (8 errors).
  Should we be concirned?
  bostjanc

  Hi,
  Below links might help you..
  - https://social.technet.microsoft.com/Forums/windowsserver/en-US/55d3ef33-caf0-41d3-874d-fc1ad65455cb/event-id-36887-source-schannel-error-the-following-fatal-alert-was-received-0?forum=winservergen
  Managing SSL for a Client Access Server
  http://technet.microsoft.com/en-us/library/bb310795.aspx
  How to Setup SSL on IIS 7
  http://learn.iis.net/page.aspx/144/how-to-setup-ssl-on-iis-7/

• Layer 2 Authentication 802.x / PEAP

  Hello,
  I'm looking for a solution on how can I integrate WLC 5508 and IAS 2003 to allow clients to authenticate using their Active Directory username and password?
  Please note that;
  I can't join all clients to the domain.
  I don't want to install SSL certificate on the clients machine as I can't predict the type of client that is going to connect to the WiFi network.
  I have posted a thread before regarding this matter https://supportforums.cisco.com/discussion/12128796/layer-3-webauth-layer-2-authentication but haven't get the right answer to it.
  Appreciate your feed back please.
  Regards,

  "The first time you connect, you’ll be asked to accept the RADIUS server’s certificate."
  > This is because you are validating the server certificate of your are specifiying the radius server on the client.  On ipads and iphones, you will always have to accept the certificate on the first connection and this will apply to other devices as well.  Not all, but some.
  Also I can see the client machine Event Error 36882 "SChannel" which is stated that the Certificate received from the remote server was issued by an Untrusted Certificate Authority and none of the data contained can be validated. Connection request failed.
  > This is becauseyou are validating the server certificate.  
  Getting this to work is not easy if its your first time.  You will have to understand PKI and how certificates work so you understand the errors.  There are many variables to be honest and you can have an issue with the IAS server, its policies, clients setting and even a certificate that can't be used for 802.1x.  All I can say, is that you have to look at more guides on the internet and try to understand how each tries to deploy 802.1x.  For now, you only can use PEAP, which is just a cert on the radius side, but you need a valid certificate that can be used for 802.1x.