Certificate is issued with certdn value from CMP request rather than the one in ss.dat when CMP Server is configured with 3gpp plugin
Originally Published: 2013-08-21
Article Number
Applies To
CMP 3gpp plugin
CMP Server is configured with 3gpp plugin and using password based protection
Issue
3gpp.osa documentation:
certdn=DN to be enforced for all certificates issued for this keyid
The incorrect behavior can be reproduced as follows:
1. Use CMPKeyGenUtil with CMP default onestep plugin... the cert gets certdn value picked from the CMP shared secret (this is expected result) and NOT from the request. [The result is as expected.]
2. Use CMPKeyGenUtil with CMP 3gpp plugin... the cert has certdn value picked (incorrectly) from the request rather than that defined in ss.dat. [This is incorrect behavior as per documentation.]
Resolution
Related Articles
What is the format of ss.dat file used by CMP 3gpp plug-in? Number of Views multiple services crashing on multiple servers and dat files be duplicated on storage locations Number of Views upgrade adds geoip_SHORTRUN_1.dat Number of Views Explanation of the failover.dat file used by RSA Authentication Manager 8.x Number of Views Set Restricted Access Times for User Groups Number of Views
Trending Articles
RSA Authentication Manager 8.9 Release Notes (January 2026) RSA MFA Agent 2.3.6 for Microsoft Windows Installation and Administration Guide RSA-2026-07: RSA Authentication Manager Security Update for Third-Party Component Vulnerabilities Downloading RSA Authentication Manager license files or RSA Software token seed records RSA MFA Agent 2.5 for Microsoft Windows Installation and Administration Guide
Don't see what you're looking for?
