Symptom On a Windows Server 2003-based or Windows XP-based computer, you cannot obtain certificates from a Windows Server 2008-based certification authority (CA). This issue occurs if the CA is configured to use SHA2 256 encryption or higher encryption (SHA2 384 or SHA2 512). When you manually request a certificate by using the Certificates Microsoft Management Console (MMC), you receive the following error message: The certificate cannot be installed because of one or more of the following conditions: • There is a problem with your cryptographic hardware • The cryptographic service provider (CSP) that created the request is malfunctioning. The error was: Cannot find the requested object. Resolution To resolve the issue, please install the hotfix KB 968730 on Windows Server 2003 or Windows XP computer. More Information Windows Server 2003 and Windows XP clients cannot obtain certificates from a Windows Server 2008-based certification authority (CA) if the CA is configured to use SHA2 256 or higher encryption http://support.microsoft.com/kb/968730 Applies to · Windows Server 2003 · Windows XP