Windows 7 Forums

Welcome to Windows 7 Forums. Our forum is dedicated to helping you find support and solutions for any problems regarding your Windows 7 PC be it Dell, HP, Acer, Asus or a custom build. We also provide an extensive Windows 7 tutorial section that covers a wide range of tips and tricks.

Windows 7: Win 7 PCs Disconnected From Exchange - Schannel is at issue !

05 Jan 2011   #1

Windows 7 Professional 32 Bit
Win 7 PCs Disconnected From Exchange - Schannel is at issue !


In our office, we have 8 PCs running Windows 7 and Outlook 2007. There is also a server running Small Business Server 2003 and Exchange Server 2003.

Previously, we had old PCs running Windows XP and Outlook 2007, and did not have any problems connecting, but at the moment, Outlook running on three of the PCs displays its status as "Disconnected from Microsoft Exchange" randomly at least once a day. Restarting the PC sometimes fixes the problem, but not always.

There were a number of issues I addressed on the server by using Microsoft Exchange Best Practises Analysis Tool, but the problem with these PCs still exists.

I have searched through the application and system event logs, and the only corralation I have found is that around the times of the disconnections, the following error is displayed -


The following fatal alert was generated: 10. The internal error state is 10.

- System

- Provider

[ Name] Schannel
[ Guid] {1F678132-5938-4686-9FDC-C8FF68F15C85}

EventID 36888

Version 0

Level 2

Task 0

Opcode 0

Keywords 0x8000000000000000

- TimeCreated

[ SystemTime] 2010-12-16T13:31:38.098155500Z

EventRecordID 4097


- Execution

[ ProcessID] 532
[ ThreadID] 572

Channel System

Computer (****PC Name****)

- Security

[ UserID] S-1-5-18

- EventData

AlertDesc 10
ErrorState 10

Can someone help me trace and resolve the issue ?

Any help would be appreciated.



My System SpecsSystem Spec
05 Jan 2011   #2

Windows 10 Pro x64

The change is due to the new schannel in Win7 - it has nothing to do with Exchange or Outlook, but in fact the error is happening at the SSL tunnel level via the certificate being used for secure communication between Outlook and Exchange. This all happens below the client (schannel handles all cert-related duty in the OS if an app uses the schannel APIs, which apps like Outlook or IE do), and any errors with the use of the cert will cause schannel errors. Usually I see a different internal error state (1203 rather than 10), but something about the cert you are using on that Exchange server is causing Win7's security provider to most definitely NOT like the connection. Do you know what the SSL version of this particular certificate is (SSLv2, SSLv3, TLSv1, TLSv1.1, TLSv1.2)?

This is probably going to require a network trace and an schannel log to get the actual root cause of this from the machine indicating the 36888 error, but the error state of 10 for both error and alert description means the server is sending back the message "UNEXPECTED_MESSAGE" when the client issues an SSL message to the server. This means *something* on the client is issuing a message to the server over the SSL tunnel other than ChangeCipherSpec, Alert, Handshake, or Application Data and is calling the APIs InitializeSecurityContext or AcceptSecurityContext.

Does it happen when using a Win7 vanilla machine installed with Outlook? Also, does it happen on machines joined to the domain only?
My System SpecsSystem Spec
05 Jan 2011   #3

Windows 7 Professional 32 Bit

Hi Cluberti,

Thanks for your quick reply.

As far as I am aware, no security certificates were installed when the Windows 7 PCs were added to the domain. I am unsure how to determine which certificate is being used - can you have give me any pointers ?

I cannot determine if the issue happens with a PC not connected to the domain, as I do not have any PCs in that situation, however I can confirm it does with PCs that are added to the domain.

With regard to the network trace, do you mean trace routes and pings between one of the affected PCs and the server ? If not, what do I need to do ?

Also, Schannel logging has been enabled in the windows registery on one of the affected PCs, but I am unsure where the logs are - will they be in the event viewer ? Does the Schannel logging need to be enable on the SBS server also ?

My apologies for all the questions, but this sort of issue is getting a little above my head.


My System SpecsSystem Spec

01 Dec 2011   #4

Win 7 Pro 32 bit
Quick workaround for event id 36888 using outlook

I read with interest the reply from cluberti which did make sense.
One quick work around you can try as we have the exact same issue on just one Win 7 Pro pc running outlook 2010 as we have countless pcs same model etc all of which are fine except this odd one.

cluberti's response got me thinking.
Change the authentication options as a test and it seems to work, even though its too early in our case to say for definate.
Go into Account settings>
Go into the More settings of outlook>
Onto the Security tab>
Take the tick out of Encrypt data between outlook and the exchange server etc etc etc.
That worked for us, if not for you play with the prompt for password and the authentication methods
My System SpecsSystem Spec

 Win 7 PCs Disconnected From Exchange - Schannel is at issue !

Thread Tools Search this Thread
Search this Thread:

Advanced Search

Similar help and support threads
Thread Forum
Schannel 36888 and 36884 errors
I have been getting many Schannel 36888 and 36884 errors, the details are the same for both. The following fatal alert was generated: 43. The internal error state is 552. and The certificate received from the remote server does not contain the expected name. It is therefore not possible...
Network & Sharing
FarCry 2 causes Schannel ID 36882 errors
Hello After some time, I have reinstalled FC2 in windows 7 64bits. As soon as I start the game, it start generating Schannel id 36882 errors nearly every 10 seconds. The error means that a certificate from a remote server was issued by an untrusted certificate authority. So, FC2 exe is sending...
Heads up!! error 36888 Schannel
Just thought I would launch a pre-emptive strike for Zone Alarm users. Just updated Zone Alarm Internet Security Suit to the latest version 9.1.603.000. The update installs a tool bar into Firefox web browser. I found that imediatly after this update, I was getting error 36888 schannel....
System Security
Outlook 2007 / Exchange email URL issue
Hello out there.... I just started getting the following dialog box in my Outlook 2007/Exchange email when I try to click on a URL emailed to me... “This operation has been cancelled due to restrictions in effect on this computer. Please contact your system administrator.” I do not have this...
Browsers & Mail

Our Sites

Site Links

About Us

Find Us

Windows 7 Forums is an independent web site and has not been authorized, sponsored, or otherwise approved by Microsoft Corporation. "Windows 7" and related materials are trademarks of Microsoft Corp.

© Designer Media Ltd

All times are GMT -5. The time now is 11:56.

Twitter Facebook Google+

Windows 7 Forums

Seven Forums Android App Seven Forums IOS App