All Apps and Add-ons
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Ask a Question

New SCOMManagementGroupConnection Fail: The request was aborted: Could not create SSL/TLS secure channel.

kmhuglen
New Member
‎08-11-2017 01:01 AM

After setting up the SCOM add-on I got the ERROR:

New SCOMManagementGroupConnection Fail: The request was aborted: Could not create SSL/TLS secure channel.

While troubleshooting I found out that PowerShell uses TLS 1.0 as default, and the Splunk web services was configured to use TLS 1.2. I added the following line to \Splunk\etc\apps\Splunk_TA_microsoft-scom\bin\scom_command_loader.ps1 at line 9 and it fixed the problem.

[Net.ServicePointManager]::SecurityProtocol = [Net.SecurityProtocolType]::Tls12

This could also be fixed by adding the line to the PowerShell profile of the service user set up to run the Splunkd service.

This was a LAB environment running on Windows Server 2016 and Splunk 6.6.2

I'm unsure if this is a bug in the Add-on or my environment?

0 Karma
Reply

dsoni_splunk
Splunk Employee
Splunk Employee
‎05-28-2018 11:14 PM

This problem going to fixed as a part of 2.2.0 development and if you are facing the issue with data collection then possible work around to resolve this issue quickly is:

Add this highlighted line below [System.Net.ServicePointManager]::ServerCertificateValidationCallback = { $true } [ Line no: 671] in scom_command_loader.ps1

[Net.ServicePointManager]::SecurityProtocol = [Net.ServicePointManager]::SecurityProtocol -bor [Net.SecurityProtocolType]::Tls11 -bor [Net.SecurityProtocolType]::Tls12

Also add it over here in this function in scom_command_loader.ps1 [System.Net.ServicePointManager]::ServerCertificateValidationCallback = { $true } [ below line No: 734]

[Net.ServicePointManager]::SecurityProtocol = [Net.ServicePointManager]::SecurityProtocol -bor [Net.SecurityProtocolType]::Tls11 -bor [Net.SecurityProtocolType]::Tls12

This would resolve your issue of data collection.

Reply

hettervik
Builder
‎04-18-2018 06:36 AM

I'm getting the same error message as you. Thank you for posting a possible fix to this problem! Did you ever found out if this is a bug in the TA or if it's the environment that should be sat to use TLS 1.2 globally?

0 Karma
Reply

nirmalrajneupan
Explorer
‎04-25-2018 02:40 PM

Hello Hettervi

The OP posts the solution to the issue as well

While troubleshooting I found out that PowerShell uses TLS 1.0 as default, and the Splunk web services was configured to use TLS 1.2. I added the following line to \Splunk\etc\apps\Splunk_TA_microsoft-scom\bin\scom_command_loader.ps1 at line 9 and it fixed the problem.

Adding the line above fixed the issue for me.

Reply
Get Updates on the Splunk Community!

Built-in Service Level Objectives Management to Bridge the Gap Between Service & ...

Wednesday, May 29, 2024  |  11AM PST / 2PM ESTRegister now and join us to learn more about how you can ...

Get Your Exclusive Splunk Certified Cybersecurity Defense Engineer Certification at ...

We’re excited to announce a new Splunk certification exam being released at .conf24! If you’re headed to Vegas ...

Share Your Ideas & Meet the Lantern team at .Conf! Plus All of This Month’s New ...

Splunk Lantern is Splunk’s customer success center that provides advice from Splunk experts on valuable data ...