|Applies To||RSA Certificate Manager 6.8|
RSA Certificate Manager OneStep 6.8
RSA Keon Certificate Authority 6.5.1
RSA Keon Certificate Authority OneStep 6.5.1
|Issue||Certificate requests made through OneStep fail if Common Name (CN) attribute value contains a comma|
Common Name (CN) value containing comma was part of the value constructed for KCSOSD_CERTDN. Any commas (,) or equal signs (=) must be escaped as , and = respectively if any of the attribute values contain those characters. Commas delimit attribute type/value pairs and equal signs separate the type and value in the cert DN (KCSOSD_CERTDN).
Update OneStep plugin to properly escape/replace any commas or equal signs present in attribute values with , or = respectively
|Workaround||Upgraded RSA Keon Certificate Authority (KCA) 6.5.1 to RSA Certificate Manager (RCM) 6.8, and accordingly recompiled custom OneStep plugin with OneStep 6.8 API to use with OneStep 6.8 CGI|
RSA Certificate Manager OneStep 6.8 Developer's Guide, page 32, instructs to escape commas (,) and equal signs (=) with &comma and &equals respectively. Note that the correct values for escaping commas and equal signs are , and = (notice the semi-colons at the end of the escape strings).
|Legacy Article ID||a42331|