Problem

-- OFTP2 feature "Automatic certificate exchange" is not working

-- Received certificate is not updated/imported automatically

-- Failure in IS.log could bee similar to "CertAttributes [oftpXXX] - Issuer are not equal with own"

Resolution

In order for updating a certificate via the Automatic certificate exchange, the following certificate attributes need to match the old one exactly:

• subject
• issuer
• key usage

Should any of these be different to the old, expiring certificate, the automatic certificate exchange cannot be used and the certificate must be distributed/imported via other means.