Microsoft KB Archive/269571

= Unsigned CRL File Causes Access Violation in Inetinfo =

Article ID: 269571

Article Last Modified on 11/21/2006

-

APPLIES TO


 * Microsoft Windows 2000 Server
 * Microsoft Internet Information Server 4.0
 * Microsoft Internet Information Services 5.0

-



This article was previously published under Q269571



SYMPTOMS
When a client certificate is issued by a certificate authority, it may contain a Certificate Revocation List (CRL). A CRL is a list that is maintained by a Certificate Authority (CA) and records the serial numbers of certificates that have been revoked.

If the CRL file is not signed, the Inetinfo application causes an Access Violation error message to occur. A Dr. Watson log similar to the following occurs:

Application exception occurred:

App: inetinfo.exe (pid=1116)

When: 7/25/2000 @ 12:51:14.825

Exception number: c0000005 (access violation)

NOTE: Windows 2000 automatically restarts after this error message appears.



CAUSE
This problem occurs because the CRL needs to be signed.



RESOLUTION
Ask your CA to correctly sign the CRL file.



STATUS
Microsoft has confirmed that this is a problem in the Microsoft products that are listed at the beginning of this article.



MORE INFORMATION
You can check the validity of the CRL by doing the following:  In Internet Explorer, from the Tools menu, click Internet Options. On the Content tab, click the Certificates button. Double-click the client certificate. Click on the Details tab. Click CRL Distribution Points.</li> Select the URL string.</li> Cancel out of all of the dialog boxes.</li> Paste the URL into the address bar.</li> Save the CRL to your local disk.</li> Find the Certutil.exe file in the <WINNT>\System32\Dllcache folder.</li> Copy the CRL into the same folder.</li> Open a command prompt in this folder.</li> Run the following command:

CERTUTIL <CRL file name>

</li></ol>

The output of CERTUTIL will indicate &quot;No Signature&quot; at the end.

Keywords: kbprb KB269571

-

[mailto:TECHNET@MICROSOFT.COM Send feedback to Microsoft]

© Microsoft Corporation. All rights reserved.