You Cannot Send or Receive Authenticated Messages

  • Article

Applies To: Windows Server 2008

Describes a specific problem with Message Queuing. Includes step-by-step instructions for fixing the problem.

This problem typically occurs when attempting to send or receive authenticated Message Queuing messages using Message Authentication. Message Authentication requires the use of a User certificate. If a User certificate is not installed, has expired, or is otherwise not accessible then Message Authentication will fail. Message Authentication can also fail if the Microsoft Base cryptographic service provider (CSP) provided with Windows 7, Windows Server 2008 R2, Windows Vista, Windows Server 2008 and Windows Server 2003 family is not being used by Message Queuing applications. The Microsoft Base (or Enhanced) CSP is required for all Message Queuing applications that send or receive authenticated messages.

Diagnosis

Because Message Queuing Message Authentication requires that the appropriate User certificate is installed, verify that the certificate is installed and accessible by the Message Queuing Service and that the certificate has not expired. Also verify that the Microsoft Base (or Enhanced) CSP is being used by all Message Queuing applications that send or receive authenticated messages.

Resolution

Complete the following steps to verify that the appropriate User certificate is installed and accessible by the Message Queuing service.

To verify that a User certificate is installed and accessible by the Message Queuing service and that the certificate has not expired

  1. Click Start, point to Run, type compmgmt.msc, and press ENTER to display the Computer Management MMC console.

  2. In the console tree, right-click Message Queuing.

    Where?

    • Computer Management/Services and Applications/Message Queuing

  3. Click Properties.

  4. Click the User Certificate tab.

  5. To register certificates in Active Directory Domain Services click Register and on the Personal Certificates dialog box click Register.

  6. To renew an existing certificate click Renew.

  7. Verify that Message Queuing applications use the Microsoft Base (or Enhanced) CSP when sending or receiving messages.

Verification

After following the steps listed above, verify that you can send or receive authenticated message with Message Queuing applications.