|Applies To||Sentry CA 3.5|
|Issue||Sentry CA 3.5 does not support mixed-digest CA chains|
When creating (or resigning) CA's for a hierarchy it is important to specify the issuer as the parent CA in the hierarchy. It is also important that the digest type throughout the entire PKI be the same.
Mixed type certificate chains are not supported in Sentry CA 3.5. For example, if you set the Root CA to be RSA/MD5 and the Admin CA to be DSA/SHA1, you will in fact create an Admin CA that is DSA/MD5.
|Resolution||This constraint has been remedied in releases of Sentry CA later than version 3.5.|
|Legacy Article ID||a4074|