FIX: ServerXMLHTTP Does Not Support Client Certificates or Redirects Between HTTP and HTTPS (294266)


The information in this article applies to:

  • Microsoft XML 2.0
  • Microsoft XML 2.5
  • Microsoft XML 2.6
  • Microsoft XML 3.0
This article was previously published under Q294266

SYMPTOMS

If you use ServerXMLHTTP to request a page from a server that requires client certificates, the request may not succeed, and you may receive the following error message:
A certificate is required to complete client authentication
Also, if the object makes a request by using one protocol (such as HTTP), and the requested page on the server redirects the output to another page by using a different protocol (such as HTTPS), the call may also fail and you may receive one of the following error messages:
A redirect request will change a non-secure to a secure connection

or

A redirect request will change a secure to a non-secure connection

STATUS

Microsoft has confirmed that this is a problem in the Microsoft products that are listed at the beginning of this article.

This bug was corrected in Microsoft XML 3.0 Service Pack 1.

For additional information on other fixes included in Microsoft XML 3.0 Service Pack 1, click the article number below to view the article in the Microsoft Knowledge Base:

292935 INFO: List of Issues Fixed in Microsoft XML 3.0 Service Pack 1

For the latest information and downloads of MSXML, refer to the following MSDN Web site at:

http://msdn.microsoft.com/xml/default.asp

MORE INFORMATION

Requirement

Server Certificate enabling Secure Socket Layers

Steps to Reproduce Behavior

  1. Paste the following code into a new ASP document, and save the document as Repro.asp in a Web-accessible folder:
    <%@Language=VBScript%>
<%
	dim sxhr
	set sxhr = server.CreateObject("MSXML2.ServerXMLHTTP")
	sxhr.Open "GET", "https://MyServer/server1.asp"
	sxhr.Send
	Response.Write sxhr.responseText
%>
  2. Change the address of the server to point to your server.
  3. Paste the following code into a new ASP document, and save the document as Server1.asp in the folder that corresponds to the root of the server:
    <%@ Language=VBScript %>
<% Response.Redirect "http://MyServer/server2.asp" %>
  4. Change the server address to point to your server.
  5. Paste the following code into a third ASP document, and save the document as Server2.asp in the same folder as Server1.asp:
    <%@ Language=VBScript %>
This is some data...
  6. Browse to Repro.asp. You receive an error message because the HTTPS page (Repro.asp) redirects the output to an HTTP page (Server2.asp).
Modification Type:MajorLast Reviewed:10/16/2002
Keywords:kbBug kbDSupport KbMSXML300SP1fix kbMSXMLnosweep KB294266
©2002 Microsoft Corporation. All rights reserved.