Certificate is issued with certdn value from CMP request rather than the one in ss.dat when CMP Server is configured with 3gpp plugin
Originally Published: 2013-08-21
Article Number
Applies To
CMP 3gpp plugin
CMP Server is configured with 3gpp plugin and using password based protection
Issue
3gpp.osa documentation:
certdn=DN to be enforced for all certificates issued for this keyid
The incorrect behavior can be reproduced as follows:
1. Use CMPKeyGenUtil with CMP default onestep plugin... the cert gets certdn value picked from the CMP shared secret (this is expected result) and NOT from the request. [The result is as expected.]
2. Use CMPKeyGenUtil with CMP 3gpp plugin... the cert has certdn value picked (incorrectly) from the request rather than that defined in ss.dat. [This is incorrect behavior as per documentation.]
Resolution
Related Articles
What is the format of ss.dat file used by CMP 3gpp plug-in? Number of Views multiple services crashing on multiple servers and dat files be duplicated on storage locations Number of Views upgrade adds geoip_SHORTRUN_1.dat Number of Views Explanation of the failover.dat file used by RSA Authentication Manager 8.x Number of Views RSA Authentication Manager 8.5 Patch 1 Security Update 1 Readme Number of Views
Trending Articles
Quick Setup Guide - Passwordless Authentication in Windows MFA Agent for Active Directory RSA MFA Agent 2.5 for Microsoft Windows Installation and Administration Guide RSA MFA Agent 2.3.6 for Microsoft Windows Installation and Administration Guide How to Download OTP Token Seed Files from myRSA RSA Authentication Manager 8.9 Release Notes (January 2026)
Don't see what you're looking for?
