Posted: Thu Aug 01, 2013 1:37 am Post subject: Certificate Extensions (SKI)
Newbie
Joined: 15 Nov 2006 Posts: 2 Location: Israel
Hello,
We have a problem where our public certificates does not include SKI extension, and the service provider's F5 appliance rejects our datapower SSL communication due to that.
Our certificate was signed by Verisign, and we generated the certificate request via Datapower.
The problem is that we have been told that we are in charge of which extensions are to be added to the public cert via our cert request, and not the signer of the certificate.
Is this true? and if it is - how is it controlled? I have yet to see any similair options when generating cert request via iKeyman and Datapower cryptoTools.
In my knowledge the issuer of the certificate (the signer) is in charge of which extensions to be added to the public key.
Help me clarify this issue, as I am having trouble finding answer on the web.
You cannot post new topics in this forum You cannot reply to topics in this forum You cannot edit your posts in this forum You cannot delete your posts in this forum You cannot vote in polls in this forum