Article ID: 207523 - View products that this article applies to.
This article was previously published under Q207523
We strongly recommend that all users upgrade to Microsoft Internet Information Services (IIS) version 7.0 running on Microsoft Windows Server 2008. IIS 7.0 significantly increases Web infrastructure security. For more information about IIS security-related topics, visit the following Microsoft Web site:
http://www.microsoft.com/technet/security/prodtech/IIS.mspxFor more information about IIS 7.0, visit the following Microsoft Web site:
When you attempt to connect to an IIS Web site using an SSL connection, one of the following symptoms occurs, depending on the browser being used:
In Internet Explorer, the following error message occurs:
Netscape Communicator stops responding when you attempt to make the connection.
Internet Explorer could not open the Internet site: <URL>
The data area passed to a system call is too small.
The browser is trying to use a 128-bit session key, but the Web server is set up to use a 40-bit key.
Note Due to export restrictions, the 128-bit key strength encryption feature is available only in the United States and Canada.
To resolve this problem, install the 128-bit version of the latest Windows NT 4.0 Service Pack (SP). This will enable the Web server to create 128-bit connections.
Installing the 128-bit version of the Windows NT SP updates the Schannel.dll file, which is used by IIS to create SSL connections.
For more information about setting encryption strength, copy the following URL to your browser:
http://localhost/iishelp/iis/htm/core/iistesc.htmFor information on how to determine the security strength that IIS is using, see the following article in the Microsoft Knowledge Base:
(http://support.microsoft.com/kb/184311/ )Remote key request generation affected by Schannel.dll
(c) Microsoft Corporation 2000, All Rights Reserved. Contributions by Kevin Zollman, Microsoft Corporation.
Article ID: 207523 - Last Review: July 7, 2008 - Revision: 5.1