L2TP/IPSec certificate problem on Windows XP client

From: George Wu (george.wu@necsam.com)
Date: 03/17/03

• Next message: Peter K.: "I am being hacked"
• Previous message: Pam: "Help Security Page"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

---

Date: Sun, 16 Mar 2003 17:42:01 -0800
From: George Wu <george.wu@necsam.com>

We are unable to use a Windows XP VPN client to access a Windows 2000
VPN server. The problem (according to Event Viewer messages) is that
the client machine certificate does not have a private key associated
with it. This seems strange since the Certificates MMC snapin clearly
shows the machine certificate is valid and has a private key associated
with it. The client machine certificate was issued through automatic
enrollment. The same certificate setup has worked with other Windows
2000 and Windows XP client systems so it is not obvious what could be
causing the problem. In an attempt to fix this problem we have reissued
the client machine certificate multiple times with no luck. Any help
would be greatly appreciated.

In case it matters, the Windows XP client system has the following OS
patches:
   -> Service Pack 1a
   -> Hot Fix Q810883
   -> Hot Fix Q810577
   -> Hot Fix Q810565
   -> Hot Fix Q329441
   -> Hot Fix Q329170
   -> Hot Fix Q328310
   -> Hot Fix Q329834
   -> Hot Fix Q329390
   -> Hot Fix Q329115
   -> Hot Fix Q329048

GW

---

• Next message: Peter K.: "I am being hacked"
• Previous message: Pam: "Help Security Page"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

---

Relevant Pages Re: Terminating Application ... In one of the greater disasters I was involved in, and had to fix at great expense, ... Windows by changing it to ExitWindowswhich exited ... The disasters you describe ensued. ... went back to my client and we ditched the product. ... (microsoft.public.vc.mfc) Re: Access 2000 Autonumber Corruption ... The latest Jet update should fix it. ... is to get each of the users to visit the Windows Update site and ... > client machines is replaced with XP/Pro/SP2 right when the server was also ... > corruption of the autonumber primary key field in one of the tables. ... (microsoft.public.data.ado) Re: Reconnecting Remote Desktop on XP Pro ... With the new Windows Mobile 2003 OS there is a reconnect bug in the built-in TSC... ... > The other fix was to go to the system console and log in (and ... > stream and has disconnected the client. ... > The RDP protocol component WD detected an error in the protocol stream ... (microsoft.public.windowsxp.work_remotely) Re: Troubles with setting OE6 as a default email client in XP ... I have problem with setting OE6 as a default email client. ... My windows is XP Professional SP1 ... I'll be happy if someone tells me how to fix it. ... (microsoft.public.windows.inetexplorer.ie6_outlookexpress) RE: Printing from Win9x clients stops ... Open Server Management. ... then right-click the name of the computer running Windows Small Business ... >From the client computer: ... The Select Network Component Type ... (microsoft.public.windows.server.sbs)

---

We are proud to have Web Hosting and Rack Housing from 9 Net Avenue Deutschland.
(17)