Hi All, I have multiple DC on which Azure ATP sensor is working fine, however on one of Domain controller 2008 R2 server it is throwing below error Error ExceptionHandler Microsoft.Tri.Infrastructure.ExtendedException: RestrictCpuAsync failed, exiting ---> System.Net.Http.HttpRequestException: An error occurred while sending the request. ---> System.Net.WebException: The request was aborted: Could not create SSL/TLS secure channel. Could you please advise, installation is having no issues Microsoft.Tri.Sensor-Errors - shows above logs

Sebastien65 I reverted to ncap v1.0 from 1.1ATP now works.

I uninstalled wincap but ncap 1.1 was not install and I installed Ncap 1.0 in zip folder « Azure ATP sensor Setup ».I installed with good parametet I follow the process on the microsoft site.

aniketvpandey something is blocking proper TLS communication on localhost between the sensor process and the updater process.

EliOfek thanks for your advise, anything you would like to advise, it was working before? I have checked TLS 1.2 enabled

aniketvpandey The TLS communication is on localhost :444, any chance there is a new FW rule that cause issues? Some of the cases we know about were resolved by making sure these registry values are set to 0 (1 is not the default) [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL] "DisableRenegoOnServer"=dword:00000001 "DisableRenegoOnClient"=dword:00000001 Was ADFS installed on this machine by any chance?

Forum Discussion

aniketvpandey

Copper Contributor

Aug 07, 2020

Azure ATP sensor : Could not create SSL/TLS secure channel

Hi All,

I have multiple DC on which Azure ATP sensor is working fine, however on one of Domain controller 2008 R2 server it is throwing below error

Error ExceptionHandler Microsoft.Tri.Infrastructure.ExtendedException: RestrictCpuAsync failed, exiting ---> System.Net.Http.HttpRequestException: An error occurred while sending the request. ---> System.Net.WebException: The request was aborted: Could not create SSL/TLS secure channel.

Could you please advise, installation is having no issues

Microsoft.Tri.Sensor-Errors - shows above logs

15 Replies

EliOfek
Microsoft
Aug 07, 2020
aniketvpandey something is blocking proper TLS communication on localhost between the sensor process and the updater process.
- aniketvpandey
  Copper Contributor
  Aug 08, 2020
  EliOfek thanks for your advise, anything you would like to advise, it was working before?
  
  I have checked TLS 1.2 enabled
  - EliOfek
    Microsoft
    Aug 08, 2020
    aniketvpandey
    
    The TLS communication is on localhost :444, any chance there is a new FW rule that cause issues?
    
    Some of the cases we know about were resolved by making sure these registry values are set to 0 (1 is not the default)
    
    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL]
    
    "DisableRenegoOnServer"=dword:00000001
    
    "DisableRenegoOnClient"=dword:00000001
    
    Was ADFS installed on this machine by any chance?