How to increase the TLS handshake size in .NET?

About

Asked 30/8, 2021 at 15:49 Answered 8/9, 2021 at 15:16

I'm experiencing connection negotiations failure while trying to establish two way authentication with .NET clients.

This happens after the remote server increased significantly the list of authorized CA.

While this issue can be easily resolved in any java clients by setting jdk.tls.maxHandshakeMessageSize to a higher value, I can't find the same workaround for .NET.

This issue happens with System.Net.HttpClient, System.Net.Security.SslStream (.NET Framework 4.7.2) and Internet Explorer 11 .

Cissy answered 30/8, 2021 at 15:49 Comment(4)

.NET (Core) or Framework apps? – Tedra 30/8, 2021 at 15:50

sorry. .NET Framework 4.7.2 – Cissy 30/8, 2021 at 15:51

Did you try to play with SCHANNEL registry size? HKEY_LOCAL_MACHINE\System\CurrentControlSet\Control\SecurityProviders\Schannel\Messaging\ and MessageLimitClient? – Tergiversate 8/9, 2021 at 17:2

i did and it works – Cissy 9/9, 2021 at 9:18

For API that relies on Windows TLS SCHANNEL, this value can be changed by setting the following DWORD value on registry.

MessageLimitClient : HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Messaging

Credit for lextm on MSDN.

Cissy answered 8/9, 2021 at 15:16 Comment(0)

Hot tags

Godot Unity Godot Help Programming Godot 4.X GUI GDScript 3D 2D Physics CSharp Godot 3.X VR XR Projects C++

Recommended topics

Hot tags