128-Bit RAS Client Is Authenticated but Cannot Use Resources on the Network

ID: Q236584

The information in this article applies to:
  • Microsoft Windows NT Server version 4.0 SP5
  • Microsoft Windows NT Workstation version 4.0 SP5
  • Microsoft Routing & Remote Access Service Update for Windows NT Server version 4.0

SYMPTOMS

After you upgrade to Windows NT 4.0 Service Pack 5 (SP5), Windows NT 4.0-based 128-bit Remote Access Services (RAS) clients can successfully dial in to a RAS server, but cannot access the server's network adapter or any other device on the network. The issue occurs when you are using the Require Data Encryption option with the Require Microsoft Encrypted Authentication setting. The client is unable to ping any TCP/IP interface on the remote network, including the Microsoft Virtual Private Networking Adapter (NDISWAN) IP address that the server assigned to the client. This behavior does not occur with 40-bit RAS clients or Microsoft Windows 95/Microsoft Windows 98 clients.

Routing and Remote Access Services (RRAS) Dial-on-Demand (DOD) connections that use direct dial (Point-to-Point Protocol, or PPP), not Point-to-Point Tunneling Protocol (PPTP), are also affected when you are using 128-bit updates with the Require Data Encryption option with the Require Microsoft Encrypted Authentication setting


RESOLUTION

To resolve this problem, obtain the latest service pack for Windows NT 4.0 or the individual software update. For information on obtaining the latest service pack, please go to:

For information on obtaining the individual software update, contact Microsoft Product Support Services. For a complete list of Microsoft Product Support Services phone numbers and information on support costs, please go to the following address on the World Wide Web:
http://www.microsoft.com/support/supportnet/overview/overview.asp


STATUS

Microsoft has confirmed this to be a problem in the Microsoft products listed at the beginning of this article. This problem was first corrected in Windows NT 4.0 Service Pack 6.


MORE INFORMATION

For additional information, click the article number below to view the article in the Microsoft Knowledge Base:

Q172215 How to Force 128-bit Data Encryption for RAS

Additional query words: encryption

Keywords : kbbug4.00 kbfix4.00 NT4SP6Fix
Version : winnt:4.0,4.0 SP5
Platform : winnt
Issue type : kbbug


Last Reviewed: October 28, 1999
© 2000 Microsoft Corporation. All rights reserved. Terms of Use.