In :

The activation process for Windows Server 2008 R2 uses HTTPS. For that handshake to succeed, the client (your server) and the server (Microsoft) must have roughly synchronized time. Why? Because digital security certificates have “valid from” and “valid to” dates. If your server’s date is off by even a few minutes, Microsoft’s server will reject the certificate as expired or not yet valid.

Open Run ( Win + R ), type inetcpl.cpl , and go to the Advanced tab. Scroll down and check Use TLS 1.1 and Use TLS 1.2 .

Additionally, install (Update to enable TLS 1.1 and TLS 1.2 as default secure protocols for WinHTTP). This is essential for 2008 R2 SP1.

The most frequent cause is a discrepancy between your server's local time and the Microsoft activation server's time. If the gap is too large, the SSL certificate verification fails. Microsoft Community Hub Date and Time settings from the Taskbar or Control Panel. Ensure the is correct for your physical location. Internet Time tab, click Change settings , and click Update now to sync with time.windows.com Microsoft Learn 2. Enable TLS 1.2 Support Microsoft servers now require

Windows Server 2008 R2 reached End of Extended Support on January 14, 2020 . Running this OS in production poses significant security risks. If you are receiving this error, it might be time to fast-track that migration plan to Server 2019/2022 or Azure!