-
-
Notifications
You must be signed in to change notification settings - Fork 646
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
A call to SSPI failed, see inner exception #9
Comments
Didnt read Documentation, Going to try that first :) |
I followed this post as mentioned in the documentation.: I generated my own PFX cert, and registered it like so: Despite all this, I am getting exactly what you outlined in the docs
Any help would be greatly appreciated. PS: I have a working POC of your application with SOCKS5 support. Look out for it once I tidy it up! Here is my config settings:
|
I don't have an SSL FTP test server to check this out. Perhaps you can share credentials to yours (if its a test server) via email, or send me a guide to setting it up on whichever OS it works best? Currently I'm using Windows 7 x64 and have no Unix box nearby, and no VPS/remote box either. |
This worked fine with the same server, last week. The server hasen't changed. I don't understand why. Maybe I am missing a setting i had before? Or something with my certs? I have tried everything under the sun to try and get this to work. My last attempt was generating a client .p12 cert and using that. https://gist.github.com/mtigas/952344 Thank you in advance for your support. |
I was able to solve this by totally by passing MS SSPI. After days and days of trying every cert known to man, I am starting to think it is a bug with SSPI and newer /stronger CERTS. I implemented OpenSSL and was able to log in fine. If you would like more information, please let me know. I would be happy to keep testing SSPI, however, if it will benefit others. Also i can try to impliment OpenSSL handshakes into FluentFTP if there is a need. |
I lost you. You "implemented OpenSSL"? I don't understand what's going on. |
I Implemented this package: https://github.com/openssl-net/openssl-net For whatever reason, SSPI cannot successfully authenticate with my server. My guess is because the UNIX based server, that is using OpenSSL for its negotiation. I am really not 100% sure. Have you had a chance to try the test server I setup? |
No, not yet. Maybe later this week or next week. If its a specialized use case then I'd prefer not testing it. |
Hi @zharris6, |
I am several versions behind at this point. But here is the ActivateEncrpytion method using https://github.com/openssl-net/openssl-net. For the record, I do not believe a Linux/Unix based server using OpenSSL is a specialized use case at all.
|
Thank you @zharris6 , when I arrive at the company I will test. |
I'm looking for more information with this issue; There's still a plethora of companies running windows 7 on their devices where SSPI is having issues with tls 1.2. I'm at the point where I have to circumvent SSPI all together because the companies can't/won't upgrade the systems. I'm looking to either use https://www.nuget.org/packages/System.Security.Cryptography.OpenSsl/ because of maintainability, but at this point i'll take anything that works. |
Hello -
I am trying to make a Explicit SSL request to my UNIX based ftpd.
I receive the exception "A call to SSPI failed, see inner exception"
The ftp server logs give me this :
Failed TLS negotiation on control channel, disconnected. (SSL_accept(): (1) error:1408A0C1:SSL routines:SSL3_GET_CLIENT_HELLO:no shared cipher)
Any insight you can provide would be greatly appreciated!
The text was updated successfully, but these errors were encountered: