CSRs generated by ssl-signing-request.jsp do not have metatata
Description
When a CSR is created through the Server Certificates interface in the admin console, and the issuer information is updated the only information the CSR will contain is the CN.
Environment
None
Activity
Show:
Gaston Dombiak
November 29, 2007 at 8:00 AM
Openfire is currently placing the issuer information in the issuerDN and just the XMPP domain in the subjectDN and the subjectAltNames like in the following example:
IssuerDN: CN=Name,OU=OU,O=O,L=city,ST=State,C=cc SubjectDN: CN=test Extensions: critical(false) 2.5.29.17 value = DER Sequence Tagged [0] IMPLICIT DER Sequence ObjectIdentifier(1.3.6.1.5.5.7.8.5) Tagged [0] UTF8String(*.test)
I'm trying to figure out if our interpretation of the specs was correct and if most CAs will be happy with our CSR.
When a CSR is created through the Server Certificates interface in the admin console, and the issuer information is updated the only information the CSR will contain is the CN.