000018151 - Error: 'Cookie rejected. Cookie failed MD5 test.' in Windows event log

Document created by RSA Customer Support Employee on Jun 16, 2016Last modified by RSA Customer Support Employee on Apr 21, 2017
Version 4Show Document
  • View in full screen mode

Article Content

Article Number000018151
Applies ToRSA ACE/Agent 4.3.3 for Windows NT (no longer supported as of 3-3-2003)
Microsoft Windows NT 4.0
Microsoft Internet Information Server (IIS) 4.0
IssueError: "Cookie rejected. Cookie failed MD5 test." in Windows event log
When using RSA ACE/Agent 4.3 with Microsoft IIS, user receives a successful authentication message, but is redirected back to login screen because of bad cookie:

Cookie rejected. Cookie failed MD5 test. Username:  ts06200. ***The permissions have been set for registry key "HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\w3svc"
***IIS/NT Server is multi-homed and is set to use the correct interface.
CauseThe cause is that the web browser or the sdiis.dll is set to run in separate memory space
Resolution1. Navigate to Start Menu --> Programs --> Windows NT Option Pack>Microsoft Internet Information Server --> Internet Service Manager (or equivalent  path)

2. After the MMC opens --> Open Internet Information Server -->"hostname" --> Default Web Site --> {scan down to sdiis.dll}

3. Right click sdiis.dll and select Properties

4. Select the Virtual Directory tab and look for the Application Settings block

NOTE: If Application Settings Block is grayed out, skip to step 5 below. If not, continue:

*******  If you see a check in the box 'Run in separate memory...'
******  un-check it. and click Apply.
 *****  You will receive an error message that you should ignore.
  ****  Click OK and cancel. The change will be applied.
   ***  Go to Step 7.

5. Click on Create, then click Apply - an error or warning appears

6. Click OK,  then click Cancel - your changes have been made

7. Test your web pages - your cookie error should now be corrected. If it is not, see the following solutions:

How to configure multi-homed RSA ACE/Agent or RSA ACE/Agent for Web gives access to protected pages when correct passcode is used
Legacy Article ID6.0.1649768.2777416