search

lsalamon / nhin-d

Automatically exported from code.google.com/p/nhin-d
0 stars 0 forks source link

Java RI does not support multiple Alt subject names correctly #174

Closed GoogleCodeExporter closed 9 years ago

GoogleCodeExporter commented 9 years ago 
What steps will reproduce the problem?
1. Have an org level certificate with two DNS type subject alt name.
2. The first name is a wildcard name (*.ccme.com) and the second only has the 
domain name
3. Import the certificate into the config-ui. 

What is the expected output? What do you see instead?
The config-ui is showing the owner as *.ccme.com instead of ccme.com.  

Also, the agent may not be able to resolve this certificate correctly for 
signature validation.  Need to validate.

Original issue reported on code.google.com by gm2...@cerner.com on 9 Feb 2012 at 6:37

GoogleCodeExporter commented 9 years ago 
[deleted comment]
GoogleCodeExporter commented 9 years ago 
Current understanding is that certificates for direct should not have multiple 
alt subject names and should not contain wild cards.  The certificate in the 
use case in the description needs to be reissued with the correct alt subject 
name.

Original comment by gm2...@cerner.com on 17 Apr 2012 at 5:29