Red Hat Certificate System CA does not handle CRMF request that comply with RFC3280 for CRLDP with name relative to CRL Issuer

Solution Verified - Updated -

Issue

In RFC 3280's description of the CRLDP, the nameRelativetoCRLIssuer is a RelativeDistinguishedName (RDN). 3280 (p97) defines an RDN to be a Set of AttributeTypeAndValue(s). 3280 defines (p93) an AttributeTypeAndValue as a Sequence of type and value. The CA does not accept a CRMF with a CRLDP that has the AttributeTypeAndValue wrapped in “SET OF” in ASN.

Subscriber exclusive content

A Red Hat subscription provides unlimited access to our knowledgebase of over 48,000 articles and solutions.

Current Customers and Partners

Log in for full access

Log In
Close

Welcome! Check out the Getting Started with Red Hat page for quick tours and guides for common tasks.