000019821 - How to publish KCA user certificates with attribute name of 'usercertificate;binary'

Document created by RSA Customer Support Employee on Jun 16, 2016Last modified by RSA Customer Support Employee on Apr 21, 2017
Version 2Show Document
  • View in full screen mode

Article Content

Article Number000019821
Applies ToKeon Certificate Authority 6.0.2
Keon Certificate Authority
iPlanet 5.1 Directory Server
Microsoft Outlook Express
IssueHow to publish KCA user certificates with attribute name of "usercertificate;binary"
Why doesn't user certificate published to LDAP shows up with Microsoft Outlook Express?
A problem is with the attribute name which is published as usercertificate and not usercertificate;binary which is required by Microsoft Outlook Express. With an attribute name of usercertificate users of Outlook Express are not able to find our certificates on our LDAP.
Older build of KCA 6.0.2 drops the ";binary" in the external publishing configuration, so it is only published as usercertificate
ResolutionTo correct this issue, configure your KCA Jurisdiction external publishing with "usercertificate;binary". Make sure your are using KCA 6.0. 2 build (110) or a newer version.

Contact RSA Security Technical Support if you are unsure which KCA build you are currently running or if you need the correct build of KCA.
Legacy Article IDa12480

Attachments

    Outcomes