SSL handshake error when enrolling new agetn

[Muhanad Abdelrahman]

After installing the Wazuh manager and proceeding with agent enrollment, I encountered the error shown below. The agent was deployed on a Windows endpoint. The Wazuh deployment is in a production environment as an all-in-one deployment.I have verified network connectivity and port accessibility, and they all check out. All configurations are set to default.

I get this error from the agent ossec.log

2025/10/29 00:06:01 wazuh-agent: INFO: Requesting a key from server: *.*.*.* 
2025/10/29 00:07:01 wazuh-agent: ERROR: SSL error (5). Connection refused by the manager. Maybe the port specified is incorrect.

and from the manager i get this error 

2025/10/29 13:27:45 wazuh-authd: INFO: New connection from *.*.*.*

2025/10/29 13:28:45 wazuh-authd: ERROR: SSL handshake failed for socket=9: error:0A000126:SSL routines::unexpected eof while reading

[Nahuel Figueroa]

Hi Muhanad! 
This behavior occurs when clients that do not comply with the protocol (for example, with an incorrect TLS handshake) attempt to connect to port 1515 (used for enrollment via the agent configuration).

On Linux and macOS systems (with netcat installed), open a terminal and run the following command. Replace <WAZUH_MANAGER_IP_ADDRESS> with your Wazuh manager's IP address or FQDN (fully qualified domain name).

# nc -zv <WAZUH_MANAGER_IP_ADDRESS> 1514 1515 55000