Microsoft KB Archive/327587

= PRB: &quot;Failed to Get Cryptographic Context&quot; Error Message When You Use the Commerce Server 2002 CryptoAPI =

Article ID: 327587

Article Last Modified on 9/27/2005

-

APPLIES TO


 * Microsoft Commerce Server 2002 Standard Edition

-



This article was previously published under Q327587



SYMPTOMS
Commerce Server 2002 supports asymmetric encryption and one-way hashing to permit you to encrypt profile properties. When you use this encryption (by using the CryptoAPI), depending on your configuration, you may receive the following error message when you try to gain access to the profile system:

Failed to get Cryptographic context.



CAUSE
This problem occurs because the ASPNET account does not have the correct permissions to gain access to the MachineKeys folder.



RESOLUTION
To avoid this problem, change the permissions on the C:\Documents and Settings\All Users\Application Data\Microsoft\Crypto\RSA\MachineKeys folder. Give the ASPNET user the following permissions on this folder, subfolder, and files:
 * List Folder / Read Data
 * Read Extended Attributes
 * Create Files / Write Data
 * Create Folders / Append Data
 * Write Attributes
 * Write Extended Attributes
 * Read Permissions

To change these permissions, right-click the folder, and then click Properties. On the Security tab, click Advanced.



MORE INFORMATION
If the ASPNET account has been replaced by a new local account or a domain account, you must give change the permissions for this new account on the MachineKeys folder.

Additional query words: plutonium cryptoapi commerce aspnet

Keywords: kberrmsg kbfix kbnofix kbqfe kbprb kbpending kbhotfixserver KB327587

-

[mailto:TECHNET@MICROSOFT.COM Send feedback to Microsoft]

© Microsoft Corporation. All rights reserved.