Article ID: 296833 - Last Review: March 1, 2007 - Revision: 2.2

PRB: Windows May Not Be Able to Handle SSL Certificates That Contain Odd-Sized Keys

View products that this article applies to.

System TipThis article applies to a different operating system than the one you are using. Article content that may not be relevant to you is disabled.

This article was previously published under Q296833

Expand all | Collapse all

SYMPTOMS

When you use a Secure Sockets Layer (SSL) connection to connect to a server whose server certificate contains odd-sized keys (keys that are not a power of 2, or 2 ^ n), the connection may fail on Windows NT and Windows 2000. Network packets that are captured with Network Monitor show that the connection fails in the SSL negotiation stage.

RESOLUTION

To work around this behavior, use a server certificate that contains normal-sized keys (keys that are a power of 2, or 2 ^ n), such as 512-bit keys and 1,024-bit keys.

APPLIES TO

Microsoft Windows 2000 Service Pack 1
Microsoft Windows 2000 Service Pack 1
Microsoft Windows NT Workstation 4.0 Developer Edition
Microsoft Windows NT Server 4.0 Standard Edition

Back to the top

kbprb KB296833

This site in other countries/regions:

PRB: Windows May Not Be Able to Handle SSL Certificates That Contain Odd-Sized Keys

SYMPTOMS

RESOLUTION

APPLIES TO

Keywords:

Other Support Sites

Community

Article Translations

Related Support Centers