Unable to initialize the protocol stack error code is
MY LCS 2005 server decided to stop communications to my OCS 2007 server, any user on the ‘07 server saw the ‘05 users presence as “unknown”.
Upon further investigation i found the issue was the certificate had expired and so TLS had stopped working.
Process of resolution was to install a new cert and define that cert in the Mutual TLS connection in the properties of the ‘05 server.
Step-by-step guide is as follows:
Start->run->mmc
in console(mmc)
file-> Add/Remove snap-in
Add->Certificates->computer account (certificates) -> finish -> close -> OK
Breaking out the tree and into personal then certificates, you should see the cert that is listed with the expiry date that means its no longer valid.
This is preference but i chose right click-> All tasks -> Request Certificate with same key
This is pretty much a click next setup, don’t worry about advanced options.
Once this is done, go into the LCS mmc console to administer your LCS server:
Forest->domains->
-> [right click] properties ->
Under connections you will have at least two (tcp and mutual TLS) and highlighting the Mutual TLS and choosing edit you can choose the select certificate option and install the new certificate, mine whinged about the cert not being valid yet but i selected it anyway and with a server restart and a disconnect and reconnect manually on the client, i had full connectivity again.
EventID:
A number of event ID errors were coming up for me such as the following across both LCS and OCS servers:
event ID: 14397
A configured certificate could not be loaded from store. The serial number is attached for reference.
Extended Error Code: 0x800B0101.
Cause: This could happen if the certificate is not found. This could also happen if the server has insufficient privileges to read the certificate or to access the store containing the certificate.
event ID: 16417
Unable to initialize the protocol stack. The service has to stop.
event ID: 12299
The service is shutting down due to an internal error.
Error Code: 0x800B0101.
Resolution:
Check the previous event log entries and resolve them. Restart the server. If the problem persists contact product support.
event ID: 14502
A significant number of connection failures have occurred with remote server
. There have been 60 failures in the last 0 minutes. There have been a total of 60 failures.
The specific failure types and their counts are identified below.
Instance count - Failure Type
60 8007274D
This can be due to credential issues , DNS , firewalls or proxies. The specific failure types above should identify the problem.
event ID: 14428
TLS outgoing connection failures.
Over the past 0 minutes Office Communications Server has experienced TLS outgoing connection failures 1 time(s). The error code of the last failure is 0x80090328 (The received certificate has expired.) while trying to connect to the host “INTGVIRT2K3004.integ.net.au”.
Cause: Wrong principal error could happen if the peer presents a certificate whose subject name does not match the peer name. Certificate root not trusted error could happen if the peer certificate was issued by remote CA that is not trusted by the local machine.
Resolution:
For untrusted root errors, ensure that the remote CA certificate chain is installed locally. If you have already installed the remote CA certificate chain, then try rebooting the computer.
event ID: 14359
Unable to use the default outgoing certificate.
Error 0x800B0101 (A required certificate is not within its validity period when verifying against the current system clock or the timestamp in the signed file.
).
Cause: The certificate may have been deleted. It could also happen if the certificate has become invalid or due to insufficient permissions.
Resolution:
Ensure that the certificate is present and valid in the local computer certificate store. Also ensure that the server has sufficient privileges to access the store.
event ID: 14397
A configured certificate could not be loaded from store. The serial number is attached for reference.
Extended Error Code: 0x800B0101.
Cause: This could happen if the certificate is not found. This could also happen if the server has insufficient privileges to read the certificate or to access the store containing the certificate.
Platform(s) Affected: Windows Server 2003 32-bit, Windows Server 2003 64-bit