SSL Certificate add failed, Error: 50 The request is not supported
Additionally, Windows Update wasn’t working neither. It displayed the following error.
“We couldn’t connect to the update service. We’ll try again later, or you can check now.”
Since both secure binding and Windows Update were failing, the issue seemed to be related to TLS protocol settings.
If you are troubleshooting a similar issue, make sure TLS protocols and encryption algorithms are enabled. Additionally, check if secure cipher suites are enabled. In our case, there was only one cipher suite defined. This was the reason of both binding and Windows Update issues.
We followed the steps below to use default cipher suite list:
Go to “Start > Run“. Enter: gpedit.msc
In the left pane, expand “Computer Configuration > Administrative Templates > Network > SSL Configuration Settings“
In the right pane, right click “SSL Cipher Suite Order” and choose “Edit”
Save the text inside “SSL Chiper Suite” field to a Notepad for backup
Select “Not Configured”
Restart the server (gpupdate doesn’t enforce this setting. You should restart the server)
Note: If the setting is already "Not Configured", change it to "Enabled" and restart the server. It should work. Later, you can change it back to "Not Configured" and restart again.