So today in my lab I came over a file transfer issue from my edges back to the front ends, the Get-CSManagementStoreReplicationStatus command returned false for the edge and I was seeing the event ID error in the event viewer itself.
A bit of googling and right keywords I came over a quick fix:
Telnet: 4443 (OK)
This seemed to work, which means the fabric was doing what it should be doing.
According to Microsoft (who else) this is by design in the Schannel component installed on the server, it’s mainly something to do with the Authentication Trusted Mode section of this component.
A quick registry fix did the trick:
- Regedit on the Edge
- Go to HKLM/SYSTEM/CurrentControlSet/Control/Security/Providers/SCHANNEL
- Right click and add the DWORD (ClientAuthTrustMode)
- Set the value of the DWORD to 2
- Restart the server
Within minutes the replication worked – Don’t forget you can Invoke-CSManagementStoreReplication if needed to speed things up!