| Event Id | 36870 |
| Source | Schannel |
| Description | A fatal error occurred when attempting to access the SSL <client or server> credential private key. The error code returned from the cryptographic module is <error code>. |
| Event Information | According to Microsoft: CAUSE: This problem occurs only if the client user account is in a Microsoft Windows NT 4.0 domain and if they are logged on to a Microsoft Windows XP Professional workstation. The Windows XP version of the Data Protection API (DPAPI) function helps to protect EFS private keys and other data that you want to keep secure. The recovery functionality of DPAPI is not supported for users who are members of domains that are running Microsoft Windows NT 4.0 and earlier. RESOLUTION: To maintain client access to certificate functionality after users change their passwords or when they use roaming profiles, upgrade the domain to Active Directory directory service. Active Directory domains provide a mechanism that helps to protect the DPAPI master key with a public/private key pair. (The DPAPI master key is used to help protect EFS private keys and other certificate-based functions.) |
| Reference Links | User Cannot Gain Access to Certificate Functionality After Password Change or When Using a Roaming Profile How to back up a server certificate in Internet Information Services 5.0 How to Import a Server Certificate for Use in Internet Information Services 5.0 How to enable schannel event logging |
Catch threats immediately
We work side-by-side with you to rapidly detect cyberthreats
and thwart attacks before they cause damage.