when I post soap https request, I am getting https request : The underlying connection was closed: Could not establish trust relationship for the SSL/TLS secure channel.
1 Answers
0
votes
This can occur when connecting to a server that is configured to use an insecure (<1024 bit) Diffie-Hellman key. This can be confirmed by an error event in the event log for "Schannel" with a message: "The following fatal alert was generated: 40".
The best option would be to get the server operator to update to using a secure DH key size. If that's not possible and you absolutely have to be able to connect, then you may want to follow the resolution method under "Known issues" in the following: Microsoft support link.
Essentially, you can allow insecure Diffie-Hellman keys by creating a new DWORD value in the Registry named ClientMinKeyBitLength with a value of 0x200 under: HKLM\SYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\KeyExchangeAlgorithms\Diffie-Hellman
