000016247 - Error when importing wildcard certificates to RSA Authentication Manager 7.1 and 8.x

Document created by RSA Customer Support Employee on Jun 16, 2016Last modified by RSA Customer Support on Jun 27, 2018
Version 5Show Document
  • View in full screen mode

Article Content

Article Number000016247
Applies ToRSA Product Set: SecurID
RSA Product/Service Type: Authentication Manager
RSA Version/Condition: 3.0, 7.1, 8.x
IssueActivating a wildcard certificate fails with the following error:

The certificate subject name does not match the hostname of this solution. Select another certificate to activate.
ResolutionRSA Authentication Manager does not allow activating wildcard certificates, which are public key certificates that can be used with multiple subdomains of a domain. It is a requirement that the certificate must be issued with exact hostname of the Authentication Manager server.

Per page 176 of the RSA Authentication Manager 8.1 Administrator Guide:

To activate a secure socket layer (SSL) certificate, the certificate must have a subject field that contains a common name (CN) with a value equal to the fully qualified hostname (FQHN) of the instance you are administering.
Legacy Article IDa62527