Notice: This website is an unofficial Microsoft Knowledge Base (hereinafter KB) archive and is intended to provide a reliable access to deleted content from Microsoft KB. All KB articles are owned by Microsoft Corporation. Read full disclaimer for more details.

FIX: Cannot Select a Verisign SSL Client Authentication Certificate


View products that this article applies to.

This article was previously published under Q287670

↑ Back to the top


Symptoms

When you configure a channel, you can select a client certificate to use for a HTTPS transport in the Advanced Configuration dialog box. The certificate should have Client Authentication as its intended purpose. Both Microsoft Client Authentication certificates and Verisign Class 1 Digital IDs meet this requirement. However, in BizTalk Server 2000, you can only select an SSL Client Authentication certificate issued by Microsoft Certificate Server. Verisign Class 1 Digital IDs do not appear in the Client Certificates drop-down list on the BizTalk SendHTTPX Properties page.

↑ Back to the top


Cause

BizTalk incorrectly filters out Verisign Class 1 Digital IDs.

↑ Back to the top


Resolution

To resolve this problem, obtain the latest service pack for Microsoft BizTalk Server 2000. For additional information, click the following article number to view the article in the Microsoft Knowledge Base:
299664� INFO: How to Obtain the Latest BizTalk Server 2000 Service Pack

↑ Back to the top


Status

Microsoft has confirmed that this is a problem in the Microsoft products that are listed at the beginning of this article. This problem was first corrected in Microsoft BizTalk Server 2000 Service Pack 1.

↑ Back to the top


More information

On a related note, do not select private key protection when you request the certificate. Do not select the Check this box to protect your private key option when you apply for a Verisign Class 1 Digital ID. Do not select the Enable strong private key protection option when you request a Microsoft Certificate Server certificate. If this option is enabled, a dialog box appears every time the certificate is accessed. BizTalk Server does not handle this because it runs as a service instead of an interactive program.

↑ Back to the top


Keywords: KB287670, kbfix, kbbug, kbbiztalk2000sp1fix

↑ Back to the top

Article Info
Article ID : 287670
Revision : 4
Created on : 10/17/2003
Published on : 10/17/2003
Exists online : False
Views : 410