000014534 - Error when trying to trying to replace CA after being externally signed.

Document created by RSA Customer Support Employee on Jun 16, 2016Last modified by RSA Customer Support Employee on Apr 21, 2017
Version 2Show Document
  • View in full screen mode

Article Content

Article Number000014534
Applies ToRSA Certificate Manager 6.8
RSA Certificate Manager (RCM)
Microsoft CA server
IssueError when trying to trying to replace CA after being externally signed.
Error:

CA Replacement
Error [XrcNAMENOTFOUND: no value found for name]
An existing CA matching the final certificate in the given chain could not be
found in the local directory. Please ensure that you have selected the correct
CA from the list in the navigation bar. You may safely go back, select the
correct CA from the list and repeat the operation.
The subject DN of the replacement certificate does not match the subjectDN of the original certificate.
CauseNoticed that the organizationname and commonname in the new certificate file are utf8 string, they were originally printable strings.

The Microsoft CA changed the encoding from "Printable String" to "UTF8 String".

Resolution
Either configure the Microsoft CA to not change the encoding, or s
et the encoding of DN strings to UTF8_ONLY in CM and re-issuing the cert request.
WorkaroundCA from RCM being signed externally by Microsoft CA
Legacy Article IDa46398

Attachments

    Outcomes