[Pki-users] Uniqueness of Subject Name issue
Vesselin Kolev
vlk at lcpe.uni-sofia.bg
Sun Apr 2 00:17:42 UTC 2017
Hello,
I installed the last version of DogTag but I have a problem with the
uniqueness of the Subject Name. By default I can issue more than one
certificate with the same Subject Name. The problem becomes even worst
when I use a profile based on directory authentication. So it looks that
anyone with proper credentials can issue countless number of certificate
with the same subject.
Since is it a fresh installation and only the LDAP authenticator and
publisher are configured I doubt it is an error related to any
intervention to the certificate profiles. On the other side I can't fine
in the documentation (even in the on of Red Hat Certificate Server) this
discussed in any details.
Do I do anything wrong or it is expected? Or if it is by default how
could I make it possible to limit the users using the automatic
enrolling to be able to have only one certificate?
Thank you very much in advance for your answer.
Best regards,
Veselin Kolev
-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/pkcs7-signature
Size: 3711 bytes
Desc: S/MIME Cryptographic Signature
URL: <http://listman.redhat.com/archives/pki-users/attachments/20170401/c6a7d6e5/attachment.p7s>
More information about the Pki-users
mailing list