Microsoft KB Archive/252984

= Internet Explorer May Not Automatically Load Client Certificate =

Article ID: 252984

Article Last Modified on 1/27/2007

-

APPLIES TO


 * Microsoft Internet Explorer 5.01
 * Microsoft Internet Explorer 5.0
 * Microsoft Internet Explorer 5.01
 * Microsoft Internet Explorer 5.01
 * Microsoft Internet Explorer 5.0

-



This article was previously published under Q252984



SYMPTOMS
Your default certificate may not be loaded automatically.



CAUSE
A client certificate is not loaded automatically if only one certificate is available on the Internet Explorer client.



RESOLUTION
To resolve this problem, obtain the latest service pack for Internet Explorer version 5.01. For additional information, click the following article number to view the article in the Microsoft Knowledge Base:

267954 How to Obtain the Latest Internet Explorer 5.01 Service Pack



STATUS
Microsoft has confirmed that this is a problem in the Microsoft products that are listed at the beginning of this article. This problem was first corrected in Internet Explorer version 5.01 Service Pack 2.



MORE INFORMATION
NOTE: For Microsoft Windows NT 4.0, Service Pack 6a must be installed before you install this hotfix.

Installing this hotfix causes the following changes:

If only one client certificate is available for authentication, Internet Explorer automatically sends that certificate. This becomes the default behavior for local, intranet, and trusted security zones. The high and medium templates prevent this behavior, while medium-low and low allow it.

Functionality has been added to avoid loading the empty client certificate dialog box.

The new functionality is hidden behind the following registry key:

HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\AutoSelectSingleCert

If the DWORD value is set and not equal to zero, the functionality is enabled. This is true unless you have two certificates in the personal store with the same trusted root.

When client authentication is requested (not required), the certificate is used anyway.

If the certificate security is set to High (requiring a password to use the certificate) the user is still prompted for the password.

Keywords: kbbug kbfix kbenv kbie501presp2fix KB252984

-

[mailto:TECHNET@MICROSOFT.COM Send feedback to Microsoft]

© Microsoft Corporation. All rights reserved.