Article ID: 817754 - View products that this article applies to.
This article has been archived. It is offered "as is" and will no longer be updated.
When you use the Advanced Networking Pack for Windows XP and the optional Windows XP Peer-to-Peer Networking Component, you may receive the following error message from a peer-to-peer grouping or from the identity management API:
Additionally, the peer-to-peer framework may not work as expected.
This behavior may occur if the permissions on the corresponding folder that contains the Rivest, Shamir, and Adelman (RSA) keys are modified by a user or program so that operations for the current security context are not permitted on that folder.
A peer framework API may return the "PEER_E_NO_KEY_ACCESS" error (for example, PeerIdentityCreate and PeerGroupCreate) when the security context where the API is invoked does not have access to the folder where the RSA keys for the specified account are stored.
To resolve this behavior, do one or both of the following, as appropriate to your situation:
Warning Make sure that you have a good understanding of access control in Windows before you perform the procedures in this article. Incorrectly modifying the access control list (ACL) of the folders that contain the RSA keys may result in security issues and may also result in unpredictable behavior in programs that are running on the computer.
Assign the User Account Full Control Permissions to the FolderFor processes that run in a security context that is associated with a Windows user account, the RSA keys are stored in the following folder, where Drive is the drive where Windows is installed and UserSID is the security ID (SID) of the user:
Drive:\Documents and Settings\UserName\Application Data\Microsoft\Crypto\RSA\UserSIDTo resolve this behavior, assign the user account Full Control permissions to the folder. To do so:
Assign the Everyone Group Appropriate Permissions to the FolderFor processes that run as a Windows service in the LocalService, NetworkService, or LocalSystem contexts, the RSA keys are created in the following folder, where Drive is the drive where Windows is installed:
Drive:\Documents and Settings\AllUsers\Application Data\Microsoft\Crypto\RSA\MachineKeys folder.
Note In some cases, the Drive:\Documents and Settings\AllUsers\Application Data\Microsoft\Crypto\RSA\MachineKeys folder is missing. In this situation, use the following method:
ReadTo do so:
List Folder/Read Data
Read Extended Attributes
Create Files/Write Data
Create Folders/Append Data
Write Extended Attributes
For additional information about the Advanced Networking Pack for Windows XP and the Windows XP Peer-to-Peer Networking Component, click the following article number to view the article in the Microsoft Knowledge Base:
(https://support.microsoft.com/kb/817778/EN-US/ )Overview of the Advanced Networking Pack for Windows XP