Some Netscape Client Certificates Rejected by IIS

ID: Q187493

The information in this article applies to:
  • Microsoft Internet Information Server version 4.0
  • Microsoft Windows NT Server version 4.0, Terminal Server Edition

SYMPTOMS

On some Netscape client certificates, Internet Information Server (IIS) may return the following message:

HTTP/1.1 403 Access Forbidden, This Virtual Directory requires a browser
that supports the configured encryption options.

NOTE: Other certificates from Netscape clients work fine.


CAUSE

IIS will sometime detect a certificate that is verifiable as unverified, but does not cause an unverifiable certificate to be verified.


RESOLUTION

To resolve this problem, obtain the latest service pack for Windows NT 4.0 or Windows NT Server 4.0, Terminal Server Edition. For additional information, please see the following article in the Microsoft Knowledge Base:

Q152734 How to Obtain the Latest Windows NT 4.0 Service Pack


STATUS

Microsoft has confirmed this to be a problem in Internet Information Server version 4.0. This problem was first corrected in Windows NT 4.0 Service Pack 4.0 and Windows NT Server 4.0, Terminal Server Edition Service Pack 4.

Additional query words: Verisign client certificates ca SSL

Keywords : NT4SP4Fix kbbug4.00 kbfix4.00.sp4
Version : WinNT:4.0
Platform : winnt
Issue type : kbbug


Last Reviewed: April 10, 1999
© 2000 Microsoft Corporation. All rights reserved. Terms of Use.