Installing Vault Server on a Windows Server 2003 running in "IIS 5.0 isolation mode" produces the following error in the Vault Server's log file:
"CryptoAPI cryptographic service provider (CSP) for this implementation could not be acquired."
Additionally, the Vault Client will display a Crypto Provider error during login.
More Information:
The Vault Server installation is written to use ASP.Net defaults based on the detected version of installed Internet Information Server. The install does not detect if IIS 6.0 is running in "IIS 5.0 isolation mode".
There have been reports of Cryptographic errors related to the Vault Server running on Windows 2000 machines, which have been upgraded to Windows Server 2003. The Windows Server 2003 upgrade process leaves IIS 6.0 in IIS 5.0 isolation mode.
Fix:
- Uninstall the Vault Server.
- Turn off "IIS 5.0 isolation mode".
- Open Internet Information Services (IIS) 6.0 Manager:
- Click Start, and then click Run.
- Type inetmgr, and then click OK.
- Expand (local computer). Right-click Web Sites, and then click Properties.
- Click the Service tab.
- Verify that "Run WWW Service in IIS 5.0 isolation mode" is not checked.
- Open Internet Information Services (IIS) 6.0 Manager:
- Close the IIS Manager.
- Restart the IIS process:
- Click Start, and then click Run.
- Type iisreset, and then click OK.
- Re-install the Vault Server.