000020992 - Additional Key Usage extensions required during certificate approval

Document created by RSA Customer Support Employee on Jun 14, 2016Last modified by RSA Customer Support Employee on Apr 21, 2017
Version 2Show Document
  • View in full screen mode

Article Content

Article Number000020992
Applies ToKeon Certificate Authority 6.5.1
Microsoft Windows 2000 Server
Sun Solaris
IssueAdditional Key Usage extensions required during certificate approval
When selecting Key Usage extensions during certificate approval, the CA requires at least one of the options to be manually ticked before allowing the certificate to be issued (other than those ticked and grayed out because they are compulsory key usages). For example, in a MS Domain Controller cert profile, Digital Signature and Key Encipherment are compulsory key usages. Hence, during approval, these options will be displayed as ticked and uneditable. However, KCA 6.5.1 requires at least one of the other options to be ticked before allowing the certificate to be issued, even though those key usages are not needed.
ResolutionThis issue has been corrected in a hot fix. Please contact RSA Security Customer Support and request the fix for tst00038599.
Legacy Article IDa20058

Attachments

    Outcomes