Red Hat Certificate System CA does not handle CRMF request that comply with RFC3280 for CRLDP with name relative to CRL Issuer
Issue
In RFC 3280's description of the CRLDP, the nameRelativetoCRLIssuer is a RelativeDistinguishedName (RDN). 3280 (p97) defines an RDN to be a Set of AttributeTypeAndValue(s). 3280 defines (p93) an AttributeTypeAndValue as a Sequence of type and value. The CA does not accept a CRMF with a CRLDP that has the AttributeTypeAndValue wrapped in “SET OF” in ASN.
Subscriber exclusive content
A Red Hat subscription provides unlimited access to our knowledgebase of over 48,000 articles and solutions.
Welcome! Check out the Getting Started with Red Hat page for quick tours and guides for common tasks.
