XADM: Encryption Certificates Issued by Key Management Server Include Digital Signature (256414)


The information in this article applies to:

  • Microsoft Exchange 2000 Server
This article was previously published under Q256414

SYMPTOMS

When you run Key Management Server (KMS) on an Exchange 2000 computer, enable advanced security on an Exchange 2000 mailbox, and then view the Key Usage extension in the client's Encryption Certificate, you may notice that the certificate authorizes Key Encipherment and Digital Signature; however, you expect only Key Encipherment to be authorized.

STATUS

Microsoft has confirmed that this is a problem in Microsoft Exchange 2000 Server.

MORE INFORMATION

For additional information, click the article number below to view the article in the Microsoft Knowledge Base:

216831 How to Read and Analyze a Client Certificate

Modification Type:MinorLast Reviewed:4/21/2005
Keywords:kbbug kbpending KB256414
©2004 Microsoft Corporation. All rights reserved.