Error: Authentication failed with VIP Service exception...The request was aborted: Could not create SSL\TLS channel

book

Article ID: 220764

calendar_today

Updated On:

Products

VIP Service

Issue/Introduction

ADFS login fails at VIP 2FA and logs or the ADFS 'test' connection from the VIP configuration tool fails with  Authentication failed with VIP Service exception. System.Net.WebException: The request was aborted: Could not create SSL\TLS channel.

Cause

SSL connectivity to VIP URL set in the VIP Configuration Tool (default: https://userservices-auth.vip.symantec.com/vipuserservices/AuthenticationService_1_4) cannot be established due to SSL\TLS error. 

Resolution

Upgrade to the latest VIP integration for ADFS to take advantage of TLS 1.2.  Older versions use TLS 1.1 or older, which could be blocked by network policy.

If restarting AD FS services does not resolve the issue, reboot the server to reset the network connections. If using a WAP or other proxy, check those elogs to determine if the traffic is being received.