Article ID: 935432 - Last Review: April 25, 2007 - Revision: 1.3

A Windows XP-based portable computer cannot use the Wireless Zero Configuration service to connect to a wireless network

View products that this article applies to.
System TipThis article applies to a different operating system than the one you are using. Article content that may not be relevant to you is disabled.
Expand all | Collapse all

SYMPTOMS

A Microsoft Windows XP-based portable computer cannot use the Wireless Zero Configuration service to connect to a wireless network. This behavior occurs if the following conditions are true:
  • You have an autoenrollment policy on the Windows XP-based computer.
  • The certificates expire after four weeks. The Group Policy object (GPO) sends a new certificate every three weeks.
  • The certificate is sent successfully, and you see the new certificate on the computer.
Every time that a new certificate is sent to the computer, the computer cannot connect to the wireless network. Typically, this behavior occurs with the following kinds of certificates:
  • A certificate that has the same key
  • A certificate that has a new key
  • A certificate renewal
  • A request for a new certificate
This problem may also occur on a Microsoft Windows Server 2003-based portable computer and on a Microsoft Windows 2000 Server-based portable computer.
Back to the top

CAUSE

This problem occurs because the Wireless Zero Configuration service does not recognize the correct certificate. If you request a certificate manually or by using an autoenrollment policy, the Wireless Zero Configuration service does not obtain the correct certificate.
Back to the top

RESOLUTION

To resolve this problem, delete the archived certificates from the Certificate store. To do this, follow these steps:
  1. Start Notepad. To do this, click Start, click Run, type notepad.exe, and then click OK.
  2. Copy and then paste the following code into a new Notepad document.
    ' ' CAPICOM Constants
 
Const CAPICOM_LOCAL_MACHINE_STORE = 1
Const CAPICOM_CURRENT_USER_STORE = 2
Const CAPICOM_MY_STORE = "MY"
 
Const CAPICOM_STORE_OPEN_READ_WRITE = 1 
Const CAPICOM_STORE_OPEN_INCLUDE_ARCHIVED = 256 


'Set objArgs=WScript.Arguments
'strServerName = objArgs(0)
Dim OID
Set OID = WScript.CreateObject("CAPICOM.OID") 

 

'=========== capicom local machine MY store certificates ==============

' Open the store.
Set Store = WScript.CreateObject("CAPICOM.Store")
Store.Open CAPICOM_LOCAL_MACHINE_STORE, CAPICOM_MY_STORE, CAPICOM_STORE_OPEN_READ_WRITE  Or CAPICOM_STORE_OPEN_INCLUDE_ARCHIVED
Set Certificates = Store.Certificates

Store.Open CAPICOM_CURRENT_USER_STORE, CAPICOM_MY_STORE, CAPICOM_STORE_OPEN_READ_WRITE  Or CAPICOM_STORE_OPEN_INCLUDE_ARCHIVED
Set Certificates = Store.Certificates

For Each Certificate In Certificates

                certDate = Certificate.ValidToDate
         
                curDateTime = Date() & " " &  Time()

                DIFF = DateDiff("s",curDateTime,CertDate)
                
                If Diff > 0 then
                                
                Else                               
                                Store.Remove Certificate				
                
                end if
Next Next
  3. Save the file as Scripts.vbs.
  4. Download the Capicom.dll file.

    The following file is available for download from the Microsoft Download Center:


    Collapse this imageExpand this image
    Download
    Download the Capicom.dll package now. (http://www.microsoft.com/downloads/details.aspx?FamilyID=860ee43a-a843-462f-abb5-ff88ea5896f6&displaylang=en&Hash=tBR0tf%2bwCLAjLWxBgnsKolOwORH1iR7n7pr5SgMD%2bIP2OkCACOgKLdpOyYDtU2YSIctZk%2bcgTglQXY4vZ6B0sg%3d%3d)

    For more information about how to download Microsoft support files, click the following article number to view the article in the Microsoft Knowledge Base:
    119591  (http://support.microsoft.com/kb/119591/ ) How to obtain Microsoft support files from online services
    Microsoft scanned this file for viruses. Microsoft used the most current virus-detection software that was available on the date that the file was posted. The file is stored on security-enhanced servers that help prevent any unauthorized changes to the file.
  5. Save the Capicom.dll file in the following folder:
    C:\WINDOWS\System32
  6. Register the Capicom.dll file, and then register the Dao360.dll file. To do this, follow these steps.
    1. Click Start, click Run, type regsvr32 capicom.dll, and then click OK.
    2. When you receive the message that the DllRegisterServer operation succeeded, click OK.
    3. Click Start, click Run, type regsvr32 c:\program files\common files\microsoft shared\dao\dao360.dll, and then click OK.
    4. When you receive the message that the DllRegisterServer operation succeeded, click OK.
  7. Double-click the Scripts.vbs file.
  8. Check the certificate store. The store must not have the archived certificates.
Back to the top

STATUS

This behavior is by design.
Back to the top

REFERENCES

For more information about how to display archived certificates on a Windows XP-based computer, visit the following Microsoft Web site:
http://technet2.microsoft.com/WindowsServer/en/library/4c574cb5-a969-4c49-8ea6-fc4fe3e642741033.mspx (http://technet2.microsoft.com/WindowsServer/en/library/4c574cb5-a969-4c49-8ea6-fc4fe3e642741033.mspx)
Back to the top
APPLIES TO
  • Microsoft Windows XP Professional
  • Microsoft Windows 2000 Advanced Server
  • Microsoft Windows 2000 Server
  • Microsoft Windows 2000 Datacenter Server
  • Microsoft Windows Server 2003, Web Edition
  • Microsoft Windows Server 2003, Datacenter Edition (32-bit x86)
  • Microsoft Windows Server 2003, Enterprise Edition (32-bit x86)
  • Microsoft Windows Server 2003, Standard Edition (32-bit x86)
Back to the top
Keywords: 
kbtshoot kbbug kbfix kbprb KB935432
Back to the top