ALERT: Some images may not load properly within the Knowledge Base Article. If you see a broken image, please right-click and select 'Open image in a new tab'. We apologize for this inconvenience.

AdminUI :: Certificate : Attribute Format


Article ID: 17475


Updated On:


CA Single Sign On Secure Proxy Server (SiteMinder) CA Single Sign On SOA Security Manager (SiteMinder) CA Single Sign-On


Issue :

When I insert a new Certificate in the Certificate Store using the AdminUI, the operation fails with error :

16:53:56,349 ERROR [FedPkiKeyStore] **ERROR** commiting keystore
change for alias infdsdbf01.

Caused by: com.rsa.certj.cert.NameException: PrintableString expected.How can I fix this ?

Environment :

AdminUI 12.52SP1

Cause :

The certificates fields format should respect the standards. In that use case, one of the certificate fields has different format as the one expected.

Restrictions of the RFC 5280 :

-- Naming attributes of type X520SerialNumber

id-at-serialNumber AttributeType ::= { id-at 5 }
X520SerialNumber ::= PrintableString (SIZE (1..ub-serial-number))




You have to set the serialNumber as PrintableString and not UTF8String to solve the issue.



Component: SMAUI