PRB: Windows May Not Be Able to Handle SSL Certificates That Contain Odd-Sized Keys (296833)
The information in this article applies to:
- Microsoft Windows 2000 Server SP1
- Microsoft Windows 2000 Professional SP1
- Microsoft Windows NT Workstation 4.0
- Microsoft Windows NT Server 4.0
This article was previously published under Q296833 SYMPTOMS
When you use a Secure Sockets Layer (SSL) connection to connect to a server whose server certificate contains odd-sized keys (keys that are not a power of 2, or 2 ^ n), the connection may fail on Windows NT and Windows 2000. Network packets that are captured with Network Monitor show that the connection fails in the SSL negotiation stage.
RESOLUTION
To work around this behavior, use a server certificate that contains normal-sized keys (keys that are a power of 2, or 2 ^ n), such as 512-bit keys and 1,024-bit keys.
| Modification Type: | Major | Last Reviewed: | 5/14/2003 |
|---|
| Keywords: | kbprb KB296833 |
|---|
|