Red Hat Certificate System CA does not handle CRMF request that comply with RFC3280 for CRLDP with name relative to CRL Issuer

Solution Verified - Updated -

Issue

In RFC 3280's description of the CRLDP, the nameRelativetoCRLIssuer is a RelativeDistinguishedName (RDN). 3280 (p97) defines an RDN to be a Set of AttributeTypeAndValue(s). 3280 defines (p93) an AttributeTypeAndValue as a Sequence of type and value. The CA does not accept a CRMF with a CRLDP that has the AttributeTypeAndValue wrapped in “SET OF” in ASN.

Subscriber exclusive content

A Red Hat subscription provides unlimited access to our knowledgebase, tools, and much more.

Current Customers and Partners

Log in for full access

Log In

New to Red Hat?

Learn more about Red Hat subscriptions

Using a Red Hat product through a public cloud?

How to access this content