KB Article #180415

How to customized all fields of an end user certificate signed by an customized Business CA certificate

Problem

Customized Business CA certificate

The end user certificate signed by the customized Business CA is delivered to all CFTs managed by CG.

It still have DN fields related to AXWAY ?

OU=R&D

O=Axway

L=Puteaux

C=FR

Resolution

The subject DN comes from the business CSR sent by CFT when it first registers into CG.

This is used in Passport to generate the end user business Certificate:

The subject DN is filled from the iaik.pkcs.pkcs10.CertificateRequest created from

com.axway.nodes.cft.provider.connector.rest.model.CftRegistrationRequest.CSRInfo

that CFT sends to CG

The end user business certificate DN is managed by uconf:cg.certificate.business.csr_dn.

For example:

uconfset id=cg.certificate.business.csr_dn, value="'O=IBM,OU=support,CN=%uconf:cft.full_hostname%,L=Madrid,C=FR'"

Affected Products

Transfer CFT All Versions

Central Governance All Versions

Affected OS

win-x86-64

win-x86-32

win-ia64-64

vms-ia64

vms-alpha

uxw-x86-32

tru64-alpha-64

sun-x86-64

sun-x86-32

sun-sparc-64

sun-sparc-32

sco-x86-32

os2200

linux-x86-64

linux-x86-32

linux-s390-64

linux-s390-32

linux-ia64-64

irix-mips-64

hpux-parisc-64

hpux-parisc-32

hpux-ia64-64

hpnonstop-x86-32

hpnonstop-ia64-32

aix-power-64

aix-power-32

Windows 3/95/98

Vse

Vos

Vms Itanium

Vms Alpha

Vms

Utower

UnixWare

Unisys

Ultrix

Ulsx6500

Ulsx5000

U6000

U3000

Tunix

Tru64

TI1500

Spix

Sinix

Sco

Qnx

Os2

OS400

Numa-Q

Netware

Mvs

MS/DOS

Linux z/Series

Linux Station x86

Linux Station Itanium

Guardian Itanium

Guardian

Gcos8

Gcos7

Gcos6

Ctos

Bs2000

Bos

Aviion

...Other

Problem

Resolution

Still need help?