Help and Support
 

powered byLive Search

Routing and Remote Access Service Does Not Enforce Strong Encryption for Dial-Up Networking Clients

View products that this article applies to.
Article ID:177670
Last Review:November 1, 2006
Revision:2.1
This article was previously published under Q177670

SYMPTOMS

When a Dial-Up Networking (DUN) client connects to a 40-bit or 128-bit Routing and Remote Access Server that is configured to "Require Data Encryption" or "Require Strong Data Encryption", the client is not disconnected if the selected data encryption negotiation fails to converge.

The following error may be logged in Event Viewer in the System Log on the server after the client has successfully established its connection: 

   Event ID   : 20073
   Source     : Router
   Description: The following error occurred in the %protocol_name% module
                on port %port_name%. The PPP control protocol for this
                network protocol is not available on the server.

NOTE: This error may also be logged after the installation of the Routing and Remote Access Service Hotfix Update 1.0 if "Require Strong Data Encryption" is enabled.

Back to the top

RESOLUTION

To resolve this problem, obtain the latest service pack for Windows NT 4.0 or Windows NT Server 4.0, Terminal Server Edition. For additional information, click the following article number to view the article in the Microsoft Knowledge Base:
152734 (http://support.microsoft.com/kb/152734/EN-US/) How to Obtain the Latest Windows NT 4.0 Service Pack

Back to the top

STATUS

Microsoft has confirmed that this is a problem in Windows NT 4.0 and Windows NT Server 4.0, Terminal Server Edition. This problem was first corrected in Windows NT 4.0 Service Pack 4.0 and Windows NT Server 4.0, Terminal Server Edition Service Pack 4.

Microsoft has confirmed this to be a problem in the Routing and Remote Access Service for Windows NT Server version 4.0.

This problem has been corrected in the RRAS Upgrade for Windows NT Server 4.0 Hotfix Pack 3.0 or later. For your convenience, the English version of this post-SP3 hotfix has been posted to the following Internet location. However, Microsoft recommends that you install Windows NT 4.0 Service Pack 4 to correct this problem.

ftp://ftp.microsoft.com/bussys/winnt/winnt-public/fixes/usa/nt40/hotfixes-postSP3/rras30-fix/ (ftp://ftp.microsoft.com/bussys/winnt/winnt-public/fixes/usa/nt40/hotfixes-postSP3/rras30-fix/)

Back to the top

MORE INFORMATION

For additional information, please see the following articles in the Microsoft Knowledge Base:

ARTICLE-ID: 189594 (http://support.microsoft.com/kb/189594/EN-US/)
TITLE : RRAS Upgrade for WinNT Server 4.0 Hotfix Pack 3.0 Release Notes

ARTICLE-ID: 169895 (http://support.microsoft.com/kb/169895/EN-US/)
TITLE : Enabling 128-bit Encryption for Routing and Remote Access

ARTICLE-ID: 174474 (http://support.microsoft.com/kb/174474/EN-US/)
TITLE : Installing RRAS Disables 128-bit RAS Encryption

Back to the top

APPLIES TO
Microsoft Windows NT Server 4.0, Terminal Server Edition
Microsoft Windows NT Server 4.0 Standard Edition
Microsoft Routing and Remote Access Service Update for Windows NT Server 4.0

Back to the top

Keywords: 
kbbug kbfix kbinterop KB177670

Back to the top

Article Translations

 

Other Support Options

  • Need More Help?
    Contact a Support professional by E-mail, Online or Phone.
  • Customer Service
    For non-technical assistance with product purchases, subscriptions, online services, events, training courses, corporate sales, piracy issues, and more.
  • Newsgroups
    Pose a question to other users. Discussion groups and Forums about specific Microsoft products, technologies, and services.