Microsoft KB Archive/299270

From BetaArchive Wiki
Knowledge Base


Kerberos Does Not Negotiate Using Internet Explorer 5.5 If an FQDN Is Used to Connect

Article ID: 299270

Article Last Modified on 5/8/2003


APPLIES TO

  • Microsoft Internet Explorer 5.5, when used with:
    • Microsoft Windows 2000 Standard Edition


This article was previously published under Q299270

SYMPTOMS

Kerberos authentication is not negotiated with Internet Explorer 5.5 or 5.5 Service Pack 1 (SP1) if a fully qualified domain name (FQDN) is used to connect to the Web server. This issue does not occur with Internet Explorer 5.01 or if the short (RDN) server name is used.

CAUSE

This issue occurs because the Internet Explorer 5.5 code does not pass the right SPN when it calls the InitializeSecurityContext function.

RESOLUTION

To resolve this problem, obtain the latest service pack for Internet Explorer 5.5. For additional information, click the following article number to view the article in the Microsoft Knowledge Base:

276369 How to Obtain the Latest Service Pack for Internet Explorer 5.5


WORKAROUND

To work around this issue, do not connect using the FQDN with Internet Explorer 5.5 or 5.5 SP1 if you need Kerberos to be negotiated.

STATUS

Microsoft has confirmed that this is a problem in the Microsoft products that are listed at the beginning of this article. This problem was first corrected in Internet Explorer 5.5 Service Pack 2.

Keywords: kbfix kbprb KB299270



Send feedback to Microsoft

© Microsoft Corporation. All rights reserved.


Retrieved from ‘https://www.betaarchive.com/wiki/index.php?title=Microsoft_KB_Archive/299270&oldid=163778
the Creative Commons 3.0 ShareAlike (except the Microsoft KB Archive).
Powered by MediaWiki