Juniper Netscreen Client unable to compute DH pair and CryptSetKeyParam failed
Posted on 2009-04-30
I have a VPN connection problem with NetScreen-Remote client.
The following Juniper log messages were captured from my client's laptop:
4-23: 17:44:20.522 My Connections\vpn - Initiating IKE Phase 1 (Hostname=vpn.xxx.com) (IP ADDR=xx.xx.xx.xx)
4-23: 17:44:42.814 CryptSetKeyParam failed 80090020
4-23: 17:44:42.814 Unable to compute DH pair!
4-23: 17:44:42.814 My Connections\vpn - Unable to initiate protocol
4-23: 17:44:42.814 My Connections\VPN - Error initiating manual connection.
I want to know what is the meaning of the following and how can I resolve them:
1) CryptSetKeyParam failed?
2) Unable to compute DH pair? (I see that the DH mean Diffie-Hellman but do not know why it were unable to compute).
For your information,
We have our own CA and using for certificate base authenticaion which link to our AD.
Our NetScreen-remote version is 10.8.3 (Build 6) and runs on XP.
Most of our users do not have the problem above and their Juniper client and VPN connection just working perfectly.
If you have the similar problem and able to resolve, I would appreciate if you could share with me.