You receive an error message when you try to configure a new remote access policy in IAS on a Windows Server 2003-based computer (871222)
The information in this article applies to:
- Microsoft Windows Server 2003, Datacenter Edition
- Microsoft Windows Server 2003, Enterprise Edition
- Microsoft Windows Server 2003, Standard Edition
- Microsoft Windows Server 2003, Web Edition
SYMPTOMSWhen you try to configure a new remote access policy in Internet Authentication Service (IAS) on a Microsoft Windows Server 2003-based computer, you may receive the following error message: A certificate could not be found that can be used with this Extensible Authentication Protocol. CAUSEThis issue occurs if a server authentication certificate that is obtained from a stand-alone certification authority (CA) is configured with incorrect parameters. RESOLUTIONTo resolve this issue, make sure that the correct key option parameters are configured in the server authentication certificate. To do this, follow these steps:
- Start Microsoft Internet Explorer.
- On the Address bar, type http://Local Host/CertSrv, and then click Go.
- On the Welcome page, click Request a certificate under Select a task.
- On the Request a Certificate page, click Advanced certificate request.
- On the Advanced Certificate Request page, click Create and submit a request to this CA.
- Make sure that the correct parameters are configured under Key Options. To do this, follow these steps:
- Click Create New key set.
- In the CSP box, click Microsoft RSA SChannel Cryptographic Provider.
- In the Key Size box, type 1024.
- Click Automatic key container name.
- Click to select the Store Certificate in the local computer certificate store check box.
- Click Submit.
REFERENCESFor information about how to enhance the security of wireless local area networks (LANs), visit the following Microsoft Web site:
| Modification Type: | Minor | Last Reviewed: | 9/21/2005 |
|---|
| Keywords: | kbtshoot KB871222 kbAudITPRO |
|---|
|