Only first Certificate of CA Chain checked against first CRL

Submitted on 12. March 2020 - 14:23 by sglaettl.
Last update on 12. March 2020 - 14:27.

Code:

AP-27536

Description:

Because of a bug in the validation, only the first certificate of the CA chain is checked against the first CRL. Therefore the configuration can be invalid if the order of the CA chain does not correspond to the order of the CRL.

Workaround:

Make sure that at least the first certificate of the CA chain matches the first CRL.

Knowledge Base Categories:

Trouble-shooting

Main menu

Navigation

User menu

You are here

Only first Certificate of CA Chain checked against first CRL

Main menu

Search form

Navigation

User menu

You are here

Only first Certificate of CA Chain checked against first CRL