Win 7 PCs Disconnected From Exchange – Schannel is at issue

Asked By 40 points N/A Posted on -
qa-featured

Hello,

We are using 8 PCs with Windows 7 and Outlook 2007 in our office. We have also a server running Small Business Server 2003 and Exchange Server 2003.

When we were using old PCs with windows XP and Outlook 2007, we didn’t face any problem during connecting, now with updated system, the condition of Outlook on 3 PCs is as "Disconnected from Microsoft Exchange" displayed once a day.

I have to restart because it fixes the problem for a period but not for long times. I also have used Microsoft Exchange Best Practices Analysis Tool to address a number of issues on the server, but can’t get rid of this problem. 

I looked through the application and system event logs to solve these issues, and found the following error during the time of disconnections-

SChannel

The following fatal alert was generated: 10. The internal error state is 10.
– System
– Provider
[Name] Schannel
[Guid] {1F678132-5938-4686-9FDC-C8FF68F15C85}
EventID 36888
Version 0
Level 2
Task 0
Opcode 0
Keywords 0x8000000000000000
– TimeCreated
[SystemTime] 2010-12-16T13:31:38.098155500Z
EventRecordID 4097
Correlation
– Execution
[ProcessID] 532
[ThreadID] 572
Channel System
Computer (****PC Name****)
– Security
[UserID] S-1-5-18

– EventData

AlertDesc 10

ErrorState 10

Any help will be appreciated.

Thanks.

SHARE
Answered By 0 points N/A #90091

Win 7 PCs Disconnected From Exchange – Schannel is at issue

qa-featured
New schannel in Windows 7 is making the change – Exchange or Outlook has nothing to do with it, actually the error caused at the SSL tunnel level via the certificate which is used for Outlook and Exchange both to communicate securely between them.
 
Under the client, all this takes place (schannel handles all cert-related duty in the OS if an app uses the schannel APIs, which apps like Outlook or IE do). Schannel errors occurred by any errors, which are arisen from the use of cert.
 
Generally, I found an internal error state (1203 rather than 10). Windows 7's security provider definitely does not like something about the cert which has been used on the Exchange server.
 
Can you tell me the SSL version (SSLv2, SSLv3, TLSv1, TLSv1.1, TLSv1.2) which this particular certificate using?
 
A network trace and a schannel log are needed to analyze the actual core issue of this problem, which is coming from the machine and showing 36888 errors. Even so, for both the error, it shows 10.
 
As well as alert description shows the server is sending back the message "UNEXPECTED_ MESSAGE." It happens whenever SSL message issued by a client to the server.
 
This message means something on the client is issuing a message to the server over the SSL tunnel other than ChangeCipherSpec, Alert, Handshake, or Application Data and is calling the APIs InitializeSecurityContext or AcceptSecurityContext.
 
Can you tell me if it happens simply when you use Windows 7 vanilla machine with Outlook installed in it? Otherwise, when you joined your machine to the domain just then is it happen?

Related Questions