Microsoft KB Archive/296833

= PRB: Windows May Not Be Able to Handle SSL Certificates That Contain Odd-Sized Keys =

Article ID: 296833

Article Last Modified on 3/1/2007

-

APPLIES TO


 * Microsoft Windows 2000 Service Pack 1
 * Microsoft Windows 2000 Service Pack 1
 * Microsoft Windows NT Workstation 4.0 Developer Edition
 * Microsoft Windows NT Server 4.0 Standard Edition

-



This article was previously published under Q296833



SYMPTOMS
When you use a Secure Sockets Layer (SSL) connection to connect to a server whose server certificate contains odd-sized keys (keys that are not a power of 2, or 2 ^ n), the connection may fail on Windows NT and Windows 2000. Network packets that are captured with Network Monitor show that the connection fails in the SSL negotiation stage.



RESOLUTION
To work around this behavior, use a server certificate that contains normal-sized keys (keys that are a power of 2, or 2 ^ n), such as 512-bit keys and 1,024-bit keys.

Keywords: kbprb KB296833

-

[mailto:TECHNET@MICROSOFT.COM Send feedback to Microsoft]

© Microsoft Corporation. All rights reserved.