<![CDATA[
<p><a href="https://social.technet.microsoft.com/Forums/windowsserver/en-US/4c5430f5-43f6-41b4-97d3-03cfb3efa70b/schannel-error-event-id-36888-is-there-a-way-to-identify-what-causes-schannel-to-log-error?forum=winserverDS">https://social.technet.microsoft.com/Forums/windowsserver/en-US/4c5430f5-43f6-41b4-97d3-03cfb3efa70b/schannel-error-event-id-36888-is-there-a-way-to-identify-what-causes-schannel-to-log-error?forum=winserverDS</a><br></p><p><a href="https://blogs.technet.microsoft.com/kevinjustin/2017/11/08/schannel-event-logging/">https://blogs.technet.microsoft.com/kevinjustin/2017/11/08/schannel-event-logging/</a><br></p><p><br></p><p>FIPS regeidt<br></p><p><a href="https://directaccess.richardhicks.com/2017/06/26/directaccess-reporting-fails-and-schannel-event-id-36871-after-disabling-tls-1-0/">https://directaccess.richardhicks.com/2017/06/26/directaccess-reporting-fails-and-schannel-event-id-36871-after-disabling-tls-1-0/</a><br></p><p><a href="https://www.howtogeek.com/245859/why-you-shouldnt-enable-fips-compliant-encryption-on-windows/">https://www.howtogeek.com/245859/why-you-shouldnt-enable-fips-compliant-encryption-on-windows/</a><br></p><p><br></p><p><a href="https://port135.com/2018/11/24/schannel-the-internal-error-state-is-10013-solved/">https://port135.com/2018/11/24/schannel-the-internal-error-state-is-10013-solved/</a><br></p><p><span style="font-size: 9pt;">잘못된 권한 올바르게 수정 하기</span><br></p><p><br></p><p>구차니즘 cmd로 하기</p><p><br></p><p>icacls "C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys" /grant Everyone:(CI)(RX)</p><p>(폴더만 보기 권한)</p><p><br></p><p>icacls "C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys" /remove "Everyone"</p><p>icacls "C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys" /grant Everyone:(CI)(RX)</p><p>icacls "C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys" /grant "Network Service:(OI)(CI)(RX)"</p><p>icacls "C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys" /grant Administrators:(OI)(CI)F</p><p>icacls "C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys" /grant System:(OI)(CI)F</p><p>icacls "C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys" /grant IUSR:(OI)(CI)F</p><p><br></p><p>명령어 찾는대 죽는줄 알았다 ㅋ </p><p><br></p><p><br></p><p><a href="https://serverfault.com/questions/335625/icacls-granting-access-to-all-users-on-windows-7">https://serverfault.com/questions/335625/icacls-granting-access-to-all-users-on-windows-7</a><br></p><p>수동 방법 예시 </p><p>C:\Windows\System32>takeown /r /d y /f f:\backup </p><p>C:\Windows\System32>icacls f:\backup /t /grant Everyone:(OI)(CI)F<br></p><p>모든 권한</p><p><br></p><p><a href="https://www.snoopybox.co.kr/1510"><strike>https://www.snoopybox.co.kr/1510</strike></a><br></p><p>예전 방식은 안되더라 ㅠㅠ</p><p><a href="https://docs.microsoft.com/en-us/windows-server/administration/windows-commands/icacls">https://docs.microsoft.com/en-us/windows-server/administration/windows-commands/icacls</a><br></p><p><a href="https://theitbros.com/using-icacls-to-list-folder-permissions-and-manage-files/">https://theitbros.com/using-icacls-to-list-folder-permissions-and-manage-files/</a> 폴더 권한 바꾸기<br></p><p>icacls test /grant Everyone:(CI)(M)<br></p><p><br></p><p>icacls "C:\ProgramData\Microsoft\Crypto\RSA\test"<br></p><p>상태 확인</p><p><br></p><p>icacls "C:\ProgramData\Microsoft\Crypto\RSA\test" /grant "Network Service:(CI)(M)"<br></p><p>icacls "C:\ProgramData\Microsoft\Crypto\RSA\test" /grant "Everyone:D"<br></p><p><span style="font-size: 9pt;"><br></span></p><p><a href="https://winaero.com/blog/enable-disable-inherited-permissions-windows-10/">https://winaero.com/blog/enable-disable-inherited-permissions-windows-10/</a><span style="font-size: 9pt;"><br></span></p><p>icacls "C:\ProgramData\Microsoft\Crypto\RSA\test" /inheritance:d<br></p><p>죽어라 삭제가 안되는대 명시적 부모에게 받은 사용권한 삭제 해야 한다.</p><p><span style="font-size: 9pt;"><br></span></p><p><span style="font-size: 9pt;">icacls "C:\ProgramData\Microsoft\Crypto\RSA\test" /remove "Everyone:(I)(OI)(CI)(RX)D"</span><br></p><p><span style="font-size: 9pt;"><br></span></p><p>icacls "C:\ProgramData\Microsoft\Crypto\RSA\test" /remove "NT AUTHORITY\NETWORK SERVICE"<br></p><p>삭제 하는 방법</p><p><br></p><p>icacls "C:\ProgramData\Microsoft\Crypto\RSA\test" /grant:r "Everyone:D"<br></p><p>:r 강재 부여 방법</p><p>Everyone 삭제가 안됨 ㅎㅎ;;<br></p><p> </p><p><strike>reg add "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL" /t <span style="color: rgb(0, 0, 0); font-family: 굴림, gulim, tahoma, sans-serif; font-size: 9pt;">REG_DWORD </span><span style="font-size: 9pt;">/v EventLogging </span><span style="font-size: 9pt;">/d 7</span></strike></p><p><span style="color: rgb(0, 0, 0); font-family: 굴림, gulim, tahoma, sans-serif;"><br></span></p><p><a href="https://blogs.msdn.microsoft.com/kaushal/2012/10/05/ssltls-alert-protocol-the-alert-codes/">https://blogs.msdn.microsoft.com/kaushal/2012/10/05/ssltls-alert-protocol-the-alert-codes/</a><span style="color: rgb(0, 0, 0); font-family: 굴림, gulim, tahoma, sans-serif;"><br></span></p><p><a href="https://serverfault.com/questions/936218/what-are-the-security-risks-of-selecting-allow-local-activation-security-check">https://serverfault.com/questions/936218/what-are-the-security-risks-of-selecting-allow-local-activation-security-check</a><span style="color: rgb(0, 0, 0); font-family: 굴림, gulim, tahoma, sans-serif;"><br></span></p><p><a href="https://community.spiceworks.com/canonical_answer_pages/71203-error-reported-in-event-viewer-event-id-36888">https://community.spiceworks.com/canonical_answer_pages/71203-error-reported-in-event-viewer-event-id-36888</a><span style="color: rgb(0, 0, 0); font-family: 굴림, gulim, tahoma, sans-serif;"><br></span></p><p><span style="color: rgb(255, 0, 0); font-family: 굴림, gulim, tahoma, sans-serif;">reg add "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL" /t </span><span style="color: rgb(255, 0, 0); font-family: 굴림, gulim, tahoma, sans-serif; font-size: 9pt;">REG_DWORD </span><span style="color: rgb(0, 0, 0); font-family: 굴림, gulim, tahoma, sans-serif; font-size: 9pt;"><span style="color: rgb(255, 0, 0);">/v EventLogging</span><span style="color: rgb(255, 0, 0);"> </span></span><span style="color: rgb(255, 0, 0); font-family: 굴림, gulim, tahoma, sans-serif; font-size: 9pt;">/d 0</span><span style="font-size: 9pt;"><br></span></p><p><span style="font-size: 9pt;"><br></span></p><p><a href="https://support.microsoft.com/en-us/help/3140245/update-to-enable-tls-1-1-and-tls-1-2-as-default-secure-protocols-in-wi"><span style="background-color: rgb(255, 255, 255); color: rgb(0, 0, 0);">https://support.microsoft.com/en-us/help/3140245/update-to-enable-tls-1-1-and-tls-1-2-as-default-secure-protocols-in-wi</span></a><span style="font-size: 9pt;"><br></span></p><p><a href="https://renenyffenegger.ch/notes/Windows/registry/tree/HKEY_LOCAL_MACHINE/Software/Microsoft/Windows/CurrentVersion/Internet-Settings/WinHttp/index">https://renenyffenegger.ch/notes/Windows/registry/tree/HKEY_LOCAL_MACHINE/Software/Microsoft/Windows/CurrentVersion/Internet-Settings/WinHttp/index</a><span style="font-size: 9pt;"><br></span></p><p>reg add "HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\WinHttp" /V "DefaultSecureProtocols" /T REG_DWORD /D 2560 /F<br></p><p>reg add "HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Internet Settings\WinHttp" /V "DefaultSecureProtocols" /T REG_DWORD /D 2560 /F<br></p><p><br></p><p><br></p><p><span style="font-size: 9pt;"><br></span></p><p><span style="font-size: 9pt;">reg add "</span>HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa\FipsAlgorithmPolicy<span style="font-size: 9pt;">" /t </span><span style="font-size: 9pt; color: rgb(0, 0, 0); font-family: 굴림, gulim, tahoma, sans-serif;">REG_DWORD </span><span style="font-size: 9pt;">/v </span>Enabled<span style="font-size: 9pt;"> /d 1</span><br></p><p>gpupdate /force<br></p>
<!-- -->
]]>
카페 게시글
오류off
Schannel 36871
동우
추천 0
조회 2,630
19.10.23 17:42
댓글 4
다음검색
첫댓글 부모 상속문제 -_-;;
https://www.dell.com/support/article/kr/ko/krbsd1/sln156352/windows%EC%9D%98-%ED%8C%8C%EC%9D%BC-%EB%B0%8F-%ED%8F%B4%EB%8D%94-%EA%B6%8C%ED%95%9C-%EC%9D%B4%ED%95%B4?lang=ko 명시적 상속변경
https://winaero.com/blog/enable-disable-inherited-permissions-windows-10/
https://www.sevenforums.com/performance-maintenance/312082-event-viewer-error-schannel.html
인터넷 익스플로 에러 같음 복원 초기화