Cannot Use Apple Encrypted Authentication with Apple OSX Client (318016)


The information in this article applies to:

  • Microsoft Windows 2000 Server
  • Microsoft Windows 2000 Advanced Server
  • Microsoft Windows NT Server 4.0
This article was previously published under Q318016

SYMPTOMS

When you use a Macintosh-based computer that is running OSX with UAM for OSX version 10.1 or later to try to connect to a Windows 2000-based or Windows NT-based server that is running Services for Macintosh, you may receive the following error message:
No File services are available at URL "server name or IP address"

CAUSE

This behavior may occur when you use the Apple Encrypted authentication method. When you use this authentication method, you cannot see shares that are located on computers that are running Windows 2000 or Windows NT Server 4.0. The Apple OSX client does not support one-way random exchange for encryption that is used by Windows 2000 and Windows NT Server 4.0 for Apple Encrypted Authentication. The OSX client supports two-way random exchange or DHX (which is not supported by Windows 2000 or Windows NT). However, OS9 supports both methods. Because of this, OS9 can negotiate Apple Encrypted Authentication when a connection attempt to a Windows 2000 or Windows NT Services for Macintosh server is made.

WORKAROUND

To work around this behavior, use Apple Clear Text or Microsoft Encryption if UAM for OSX 10.1 or later is installed. For more information about this client software, visit the following Microsoft Web site:

http://www.microsoft.com/mac/otherproducts/otherproducts.aspx?pid=windows2000sfm

To set the authentication type on Windows 2000 Services for Macintosh server, do the following:
  1. Open the Computer Management Microsoft Management Console (MMC) snap-in.
  2. Under System Tools, right-click Shared Folders, and then click Configure File Server for Macintosh.
  3. In the File Server for Macintosh Properties window, click the Configuration tab.
  4. In the Security section, for Enable Authentication, select Apple Clear Text or Microsoft.
  5. Click OK, and then close the MMC snap-in.

MORE INFORMATION

The third-party products that are discussed in this article are manufactured by companies that are independent of Microsoft. Microsoft makes no warranty, implied or otherwise, regarding the performance or reliability of these products.
Modification Type:MinorLast Reviewed:8/26/2003
Keywords:kb3rdparty kbenv kberrmsg kbnetwork kbprb KB318016
©2003 Microsoft Corporation. All rights reserved.