Microsoft KB Archive/274724

= EAP-TLS Resumed Session Generates Error Code 691 =

Article ID: 274724

Article Last Modified on 2/21/2007

-

APPLIES TO


 * Microsoft Windows 2000 Server
 * Microsoft Windows 2000 Advanced Server
 * Microsoft Windows 2000 Professional Edition

-



This article was previously published under Q274724



SYMPTOMS
If you attempt to reconnect a connection that uses Extensible Authentication Protocol - Transport Layer Security (EAP-TLS) within two minutes of the disconnection, the connection stops working with the following error message:

691 - Access was denied because the user name and/or password was invalid on the domain.



WORKAROUND
After a disconnection, wait at least two minutes or longer before you attempt to reconnect.



STATUS
Microsoft has confirmed that this is a problem in the Microsoft products that are listed at the beginning of this article.



MORE INFORMATION
EAP is a Point-to-Point Protocol (PPP) extension that provides support for additional authentication methods within PPP. TLS allows mutual authentication, integrity-protected cipher suite negotiation, and key exchange between two endpoints.

If you are using smart cards for remote access authentication in Windows 2000, you must use the EAP-TLS authentication method.

Keywords: kbbug kbpending kbwin2000presp2fix KB274724

-

[mailto:TECHNET@MICROSOFT.COM Send feedback to Microsoft]

© Microsoft Corporation. All rights reserved.