I have discovered that when I use a CSR with a SubjecDN greater than 63 characters in length it throws the following
idna: invalid label "UID=f0486469-6aa7-4a93-8cc2-3e64f30e1789,CN=Nicholas Peter Irving"
I have raised an issue
https://github.com/hashicorp/vault/issues/11721
to get this looked at, how I have noticed that i can disabled this check through the UI by using the Sign Verbatim option.
This adds an additional parameter in the request to /sign
I have discovered that when I use a CSR with a SubjecDN greater than 63 characters in length it throws the following
I have raised an issue https://github.com/hashicorp/vault/issues/11721 to get this looked at, how I have noticed that i can disabled this check through the UI by using the
Sign Verbatim
option.This adds an additional parameter in the request to
/sign
Is this something that looks like we can add?