Certificate is issued with certdn value from CMP request rather than the one in ss.dat when CMP Server is configured with 3gpp plugin
Originally Published: 2013-08-21
Article Number
Applies To
CMP 3gpp plugin
CMP Server is configured with 3gpp plugin and using password based protection
Issue
3gpp.osa documentation:
certdn=DN to be enforced for all certificates issued for this keyid
The incorrect behavior can be reproduced as follows:
1. Use CMPKeyGenUtil with CMP default onestep plugin... the cert gets certdn value picked from the CMP shared secret (this is expected result) and NOT from the request. [The result is as expected.]
2. Use CMPKeyGenUtil with CMP 3gpp plugin... the cert has certdn value picked (incorrectly) from the request rather than that defined in ss.dat. [This is incorrect behavior as per documentation.]
Resolution
Related Articles
What is the format of ss.dat file used by CMP 3gpp plug-in? Number of Views upgrade adds geoip_SHORTRUN_1.dat Number of Views multiple services crashing on multiple servers and dat files be duplicated on storage locations Number of Views Explanation of the failover.dat file used by RSA Authentication Manager 8.x Number of Views entitlement server timeout and/or failover when performing a wildcard search in admingui Number of Views
Trending Articles
Troubleshooting RSA SecurID Access Identity Router to RSA Authentication Manager test connection failures RSA SecurID Software Token 5.0.2 Downloads for Microsoft Windows RSA Authentication Manager 8.9 Release Notes (January 2026) Quick Setup Guide - Passwordless Authentication in Windows MFA Agent for Active Directory RSA Authentication Manager 8.8 Setup and Configuration Guide
Don't see what you're looking for?
