CryptoAPI error on Windows Server 2003 IIS5.0 isolation mode

A collection of information about Vault, including solutions to common problems.

Moderator: SourceGear

Post Reply
jclausius
Posts: 3706
Joined: Tue Dec 16, 2003 1:17 pm
Location: SourceGear
Contact:

CryptoAPI error on Windows Server 2003 IIS5.0 isolation mode

Post by jclausius » Mon Dec 29, 2003 3:44 pm

Summary:
Installing Vault Server on a Windows Server 2003 running in "IIS 5.0 isolation mode" produces the following error in the Vault Server's log file:
"CryptoAPI cryptographic service provider (CSP) for this implementation could not be acquired."

Additionally, the Vault Client will display a Crypto Provider error during login.

More Information:
The Vault Server installation is written to use ASP.Net defaults based on the detected version of installed Internet Information Server. The install does not detect if IIS 6.0 is running in "IIS 5.0 isolation mode".

There have been reports of Cryptographic errors related to the Vault Server running on Windows 2000 machines, which have been upgraded to Windows Server 2003. The Windows Server 2003 upgrade process leaves IIS 6.0 in IIS 5.0 isolation mode.

Fix:
  • Uninstall the Vault Server.
  • Turn off "IIS 5.0 isolation mode".
    • Open Internet Information Services (IIS) 6.0 Manager:
      • Click Start, and then click Run.
      • Type inetmgr, and then click OK.
    • Expand (local computer). Right-click Web Sites, and then click Properties.
    • Click the Service tab.
    • Verify that "Run WWW Service in IIS 5.0 isolation mode" is not checked.
  • Close the IIS Manager.
  • Restart the IIS process:
    • Click Start, and then click Run.
    • Type iisreset, and then click OK.
  • Re-install the Vault Server.
Jeff Clausius
SourceGear

Post Reply