How check CN before generate certificate ?
|
View:
New views
3 Messages
—
Rating Filter:
Alert me
|
 |
How check CN before generate certificate ?
by Anais
::
Rate this Message:
|
|
|
Re: How check CN before generate certificate ?
by Johan Eklund
::
Rate this Message:
Hi Anais,
EJBCA always ignores what comes in the certificate request, since it cannot be trusted and uses the info from the End Entity Profile instead. Reverse subject DN and Altname is about field ordering. Eg. CN=..., OU=..., C=.. vs. C=.., OU=..., CN=... Best Regards, Johan Eklund Anais skrev: > Hi, > > I would like to check that CN (or mail) given in the certificate request is > the same as CN wich is in end-entity. > I have make a end-entity profile with "Reverse Subject DN and subject all > name checks" but system doen't check the two CN because whent i have "toto" > in my certificate request and "user" in my end-entity, the certificate is > created but it shouldn't be create. > > Is it something that i haven't do ? > > Thanks > -- PrimeKey Solutions offers a commercial EJBCA support subscription and training for EJBCA. Please see www.primekey.se or contact info@... for more information. http://download.primekey.se/documents/ejbca_subscription.pdf http://download.primekey.se/documents/ejbca_training.pdf ------------------------------------------------------------------------- This SF.Net email is sponsored by the Moblin Your Move Developer's challenge Build the coolest Linux based applications with Moblin SDK & win great prizes Grand prize is a trip for two to an Open Source event anywhere in the world http://moblin-contest.org/redirect.php?banner_id=100&url=/ _______________________________________________ Ejbca-develop mailing list Ejbca-develop@... https://lists.sourceforge.net/lists/listinfo/ejbca-develop |
|
|
Re: How check CN before generate certificate ?
by Anais
::
Rate this Message:
|
smime.p7s (3K) 
| Free Forum Powered by Nabble | Forum Help |