|Applies To||RSA Certificate Manager 6.7|
RSA Validation Manager 3.0
|Issue||OCSP client rejects OCSP Signer certificate used in RSA Validation Manager|
How to generate OCSP Signer certificate from RSA Certificate Manager
|Resolution||Using the certificate request that was generated from RSA Validation Manager when creating the OCSP Signer certificate, submit it as a PKCS#10 request to the Enrollment Server of Certificate Manager.|
Log in to RSA Certificate Manager as administrator, go to Certificate Operations -> View Request Active -> List All.
Find the certificate request and click on it to view the request.
Before issuing the certificate, from the Profile drop down list, select "Custom End-Entity", select all items in the PKCS10 Extension column, and deselect all items from the Available Extension column (use Ctrl-Click to deselect).
Once approved, import the certificate in RSA Validation Manager.
|Legacy Article ID||a35727|