Microsoft small business knowledge base

Article ID: 299270 - Last Review: February 28, 2014 - Revision: 2.0

This article was previously published under Q299270
This article has been archived. It is offered "as is" and will no longer be updated.


Kerberos authentication is not negotiated with Internet Explorer 5.5 or 5.5 Service Pack 1 (SP1) if a fully qualified domain name (FQDN) is used to connect to the Web server. This issue does not occur with Internet Explorer 5.01 or if the short (RDN) server name is used.


This issue occurs because the Internet Explorer 5.5 code does not pass the right SPN when it calls the InitializeSecurityContext function.


To resolve this problem, obtain the latest service pack for Internet Explorer 5.5. For additional information, click the following article number to view the article in the Microsoft Knowledge Base:
276369  ( ) How to Obtain the Latest Service Pack for Internet Explorer 5.5


To work around this issue, do not connect using the FQDN with Internet Explorer 5.5 or 5.5 SP1 if you need Kerberos to be negotiated.


Microsoft has confirmed that this is a problem in the Microsoft products that are listed at the beginning of this article. This problem was first corrected in Internet Explorer 5.5 Service Pack 2.

  • Microsoft Internet Explorer 5.5, when used with:
    • Microsoft Windows 2000 Standard Edition
kbnosurvey kbarchive kbfix kbprb KB299270
Additional support options
Ask The Microsoft Small Business Support Community
Contact Microsoft Small Business Support
Find Microsoft Small Business Support Certified Partner
Find a Microsoft Store For In-Person Small Business Support