|Applies To||Keon Certificate Authority 6.5.1|
Microsoft Windows 2000 Server
|Issue||Additional Key Usage extensions required during certificate approval|
When selecting Key Usage extensions during certificate approval, the CA requires at least one of the options to be manually ticked before allowing the certificate to be issued (other than those ticked and grayed out because they are compulsory key usages). For example, in a MS Domain Controller cert profile, Digital Signature and Key Encipherment are compulsory key usages. Hence, during approval, these options will be displayed as ticked and uneditable. However, KCA 6.5.1 requires at least one of the other options to be ticked before allowing the certificate to be issued, even though those key usages are not needed.
|Resolution||This issue has been corrected in a hot fix. Please contact RSA Security Customer Support and request the fix for tst00038599.|
|Legacy Article ID||a20058|