{var%20f='http://v.t.sina.com.cn/share/share.php?appkey=1515056452',u=z||d.location,p=['&url=',e(u),'&title=',e(t||d.title),'&source=',e(r),'&sourceUrl=',e(l),'&content=',c||'gb2312','&pic=',e(p||'')].join('');function%20a(){if(!window.open([f,p].join(''),'mb',['toolbar=0,status=0,resizable=1,width=440,height=430,left=',(s.width-440)/2,',top=',(s.height-430)/2].join('')))u.href=[f,p].join('');};if(/Firefox/.test(navigator.userAgent))setTimeout(a,0);else%20a();})(screen,document,encodeURIComponent,'','','https://www.manongdao.com/data/attach/logo/logo.png', '推荐 Animai°情兽 的问题《The client and server cannot communicate, because》','https://www.manongdao.com/q-808893.html','页面编码gb2312|utf-8默认gb2312'));){kind=link}
Following is my Setup for mutual SSL authentication for client/server console app on Windows 10:
- There is a server listener console app that only accepts TLS 1.0 connections.
- Client console application uses SslStream.AuthenticateAsClient to configure a secure connection and uses TLS 1.2 connection.
- I am using the following example for mutual SSL authentication: http://www.codeproject.com/Articles/326574/An-Introduction-to-Mutual-SSL-Authentication
Server code:
sslStream.AuthenticateAsServer(certificate, true, SslProtocols.Tls, true);
Client code:
sslStream.AuthenticateAsClient(hostName, certificates, SslProtocols.Tls12, true);
Error:
Exception: A call to SSPI failed, see inner exception.
Inner exception: The client and server cannot communicate, because they do not possess a common algorithm
Question:
When i change the SslProtocols to be same in client and server, i.e. TLS 1.0, SSL handshake is successful. Why does the handshake fail when the SSL protocol is different on client and server?
The protocols have to be the same. You have to "negotiate" a common protocol between the server and client or they aren't able to speak the same language. The
SslProtocolsenum is marked as[Flags]so that you can specify multiple protocols, e.g.SslProtocols.Tls | SslProtocols.Tls12