Monitor unlimited number of servers
Filter log events
Create email and web-based reports

Direct access to Microsoft articles
Customized keywords for major search engines
Access to premium content

Event ID: 4106 Source: Schannel

An SSL connection request was received from a remote client application, but none of the cipher suites supported by the client application are supported by the server. The SSL connection request has failed.
We have seen this event being recorded on the server side after a terminal services session was left unattended for period of time.
EV100387 (Java connection problems with tunneled applications) provides an example of a similar situation. The application (an IBM Mainframe client) had problems connecting using SSL due to a lack of proper certificate. They used a network sniffer (Wireshark) to capture the traffic generated by the application.

EV100388 (Event id 36874) is very similar to this event so the comments apply as well.

Windows Event Log Analysis Splunk App

Build a great reporting interface using Splunk, one of the leaders in the Security Information and Event Management (SIEM) field, linking the collected Windows events to



Cisco ASA Log Analyzer Splunk App

Obtain enhanced visibility into Cisco ASA firewall logs using the free Firegen for Cisco ASA Splunk App. Take advantage of dashboards built to optimize the threat analysis process.