ALERT: Some images may not load properly within the Knowledge Base Article. If you see a broken image, please right-click and select 'Open image in a new tab'. We apologize for this inconvenience.

Encryption Management Server does not support certificates that use the RSASSA-PSS signature algorithm

book

Article ID: 158768

calendar_today

Updated On:

Products

Desktop Email Encryption Encryption Management Server Gateway Email Encryption

Issue/Introduction

When trying to import an X.509 certificate which uses the RSASSA-PSS signature algorithm into Encryption Management Server by logging into the administration console and navigating to Consumers / Users / External Users and clicking on the Add External Users button, the import fails.

The administration console shows this error message:

Import Failed
There was an error importing the external user keys. Please check the Administration logs for further details.

Note that the Administration log does not show any further details.

Environment

Symantec Encryption Management Server prior to release 10.5.1.

Resolution

Upgrade to release 10.5.1 or above.

Starting with release 10.5.1, Encryption Management Server supports X.509 certificates that use RSASSA-PSS.

Additional Information

EPG-21778