Certificate is issued with certdn value from CMP request rather than the one in ss.dat when CMP Server is configured with 3gpp plugin
Originally Published: 2013-08-21
Article Number
Applies To
CMP 3gpp plugin
CMP Server is configured with 3gpp plugin and using password based protection
Issue
3gpp.osa documentation:
certdn=DN to be enforced for all certificates issued for this keyid
The incorrect behavior can be reproduced as follows:
1. Use CMPKeyGenUtil with CMP default onestep plugin... the cert gets certdn value picked from the CMP shared secret (this is expected result) and NOT from the request. [The result is as expected.]
2. Use CMPKeyGenUtil with CMP 3gpp plugin... the cert has certdn value picked (incorrectly) from the request rather than that defined in ss.dat. [This is incorrect behavior as per documentation.]
Resolution
Related Articles
What is the format of ss.dat file used by CMP 3gpp plug-in? Number of Views upgrade adds geoip_SHORTRUN_1.dat Number of Views multiple services crashing on multiple servers and dat files be duplicated on storage locations Number of Views Explanation of the failover.dat file used by RSA Authentication Manager 8.x Number of Views entitlement server timeout and/or failover when performing a wildcard search in admingui Number of Views
Trending Articles
Passwordless Authentication in Windows MFA Agent for Active Directory – Quick Setup Guide RSA Authentication Manager 8.9 Release Notes (January 2026) RSA Authentication Manager Upgrade Process RSA Authentication Manager 8.7 SP2 Setup and Configuration Guide An example of SSO using SAML and ADFS with RSA Identity Management and Governance 6.9.x
Don't see what you're looking for?
