Windows 10: Problem with DC serving up an expired KDC certificate for ldaps to clients

have a DC with KDC certificates that expired last month. They have been renewed.But the DC still appears to be providing the expired one to clients. DC has been rebooted since the renewalWindows 2012R2

:)

 

Schannel 48 36887 error with SonicWall ldap

I don't know how many people are having the SChannel 48 36887 error.

I was and found out that my Sonicwall Firewall was trying to communicate with my Windows 2008 R2 DC.

I found the standard error in the system event log and went digging for the last 3 weeks through the different logs and finally found a series of log entries in the Application and Service, Directory Service.

The entries are:


Internal event: An LDAP over Secure Sockets Layer (SSL) connection could not be established with a client.

Client network address:

10.16.0.1:54399

Protocol:

TCP

Additional Data

Error value:

2148074277 The certificate chain was issued by an authority that is not trusted.

Internal ID:

c050725

----------------------------------------------------


Internal event: The LDAP server returned an error.

Additional Data

Error value:

00000003: LdapErr: DSID-0C060469, comment: Error decrypting ldap message, data 0, v1db1

----------------------------------------------------------------


Internal event: An LDAP client connection was closed because of an error.

Client IP:

10.16.0.1:54399

Additional Data

Error value:

3 The system cannot find the path specified.

Internal ID:

c060463

-----------------------------------------------------------------------


Internal event: An LDAP over Secure Sockets Layer (SSL) connection could not be established with a client.

Client network address:

10.16.0.1:54398

Protocol:

TCP

Additional Data

Error value:

2148074277 The certificate chain was issued by an authority that is not trusted.

Internal ID:

c050725

------------------------------------------------------

This coincided with the time of the error 48.

I went up to my firewall and disabled the ldap query and the error has stopped.

I am thinking that it is because the firewall has a self generated certificate.

I hope that this may help someone who is having a similar issue.

 

Expired certificate

When trying to update a Nokia N95 I am getting the message "Expired Certificate" after the step Install MMS Sync.



On the computer it is saying installation complete?



Is the installation complete or is the expired certificate a problem?

 

Expired certificate problem

are you trying to download from Ovi store? if you are and you are having expired certificate error message, change the date on your mobile device to January of 2007 or January of 2009 and try these steps: 1. Close the Ovi Store client 2. Open your mobile
browser and go to the following URL:
http://contacts.ovi.com/dist/Verisign_Class_3_Public_Primary_Certification_Authority.der 3. Select Save to download the certficicate to your device 4. Lauch the Ovi Store client.