Problems with User IDs and Passwords Containing Special Characters with Windows NT Challenge/Response Authentication

This article was previously published under Q296688
This article has been archived. It is offered "as is" and will no longer be updated.
SYMPTOMS
If a user is prompted for his or her credentials from a Web server that supports Windows NT Challenge/Response authentication, a dialog box with three input lines (for the user ID, password, and domain) is presented to the user. If the user ID, password, or domain entry contains a special character with a code point outside of the range from 32 to 126, the user's account is not granted access to the resource. If the password contains the special character, domain policies may force the account to be locked out after multiple retries.
CAUSE
The input fields in Internet Explorer are interpreted as ASCII input fields. Input that is entered by using the keyboard is encoded with the ANSI code page. The domain controller detects that an incorrect user ID or password has been typed because the character mapping between ASCII and ANSI is different for multiple characters (including language-specific special characters such as the German umlaut character).

Only characters that are identical in ASCII and ANSI are treated correctly. These characters have the same mapping in ANSI and ASCII:
!"#$%&'()*+,-./ 0123456789:;<=>?@ABCDEFGHIJKLMNOPQRSTUVWXYZ[\]^					
WORKAROUND
To work around this issue, use either of the following methods:
  • Allow only characters in the upper table to be used for the user ID and password.
  • Use Basic authentication.
STATUS
Microsoft has confirmed that this is a problem in the Microsoft products that are listed at the beginning of this article.
Properties

Article ID: 296688 - Last Review: 12/06/2015 02:15:57 - Revision: 2.0

Microsoft Internet Explorer 4.0 128-Bit Edition, Microsoft Internet Explorer 4.01 Service Pack 2, Microsoft Internet Explorer 4.01 Service Pack 1, Microsoft Internet Explorer 4.01 Service Pack 2, Microsoft Internet Explorer 5.0, Microsoft Internet Explorer 5.01, Microsoft Internet Explorer (Programming) 5.01 SP1

  • kbnosurvey kbarchive kbenv kbprb KB296688
Feedback