One of our users is developing an HTTP connector that uses an HTTPS connection.
The DataMiner version is 9.6.12, running in Windows Server 2012 R2.
They are struggling to have their connector communicate with DataMiner. This error was initially seen in the element's Stream Viewer: Error : 12030. [ERROR_WINHTTP_CONNECTION_ERROR].
Upon looking at another Dojo question (Which version of WinHTTP and SSL/TLS is used by default), the mentioned Windows updates were installed and the procedure to enable TLS 1.2 was followed (DefaultSecureProtocols is now 0x00000800).
Unfortunately, this wasn't enough to fix the communication problem. Two different errors are now seen, depending on the endpoint used:
- Error : 12175. [ERROR_WINHTTP_SECURE_FAILURE]
- Error : 12044. [ERROR_WINHTTP_CLIENT_AUTH_CERT_NEEDED]
How can we troubleshoot this further?
Have they tried using a third party application like Postman to test the communication with the device from the server? If there are still issues, it could be that the client certificate of the server is not properly configured.
Hi Tiago,
Can you please share a Wireshark trace? It’s simple to see which TLS suite the Client is using on the TLS handshake, by decoding the TLS packets and inspecting the TLS version on the handshake section (for instance: TLS 1.0 0x00000301).
You can also, while trying to reach the IP through Google Chrome browser, and at the same time sniffing the packets on the interface, understand how a correct communication will look like and draw your conclusions.
It can perfectly be a certificate issue, which you can also extract from such a trace (export packet bytes into a .der file).