Table of Contents
Advertisement
Table 135 PKI Logs
Log Message
Failed to resolve
<CMP CA server url>
Rcvd ca cert:
<subject name>
Rcvd user cert:
<subject name>
Rcvd CRL <size>:
<issuer name>
Rcvd ARL <size>:
<issuer name>
Failed to decode
the received ca
cert
Failed to decode
the received user
cert
Failed to decode
the received CRL
Failed to decode
the received ARL
Rcvd data <size>
too large! Max size
allowed: <max size>
Cert trusted:
<subject name>
Due to <reason
codes>, cert not
trusted: <subject
name>
Description
The CMP online certificate enrollment failed because the
certification authority server IP address cannot be resolved.
The router received a certification authority certificate, with
subject name as recorded, from the LDAP server whose IP
address and port are recorded in the Source field.
The router received a user certificate, with subject name as
recorded, from the LDAP server whose IP address and port
are recorded in the Source field.
The router received a CRL (Certificate Revocation List), with
size and issuer name as recorded, from the LDAP server
whose IP address and port are recorded in the Source field.
The router received an ARL (Authority Revocation List), with
size and issuer name as recorded, from the LDAP server
whose address and port are recorded in the Source field.
The router received a corrupted certification authority
certificate from the LDAP server whose address and port are
recorded in the Source field.
The router received a corrupted user certificate from the
LDAP server whose address and port are recorded in the
Source field.
The router received a corrupted CRL (Certificate Revocation
List) from the LDAP server whose address and port are
recorded in the Source field.
The router received a corrupted ARL (Authority Revocation
List) from the LDAP server whose address and port are
recorded in the Source field.
The router received directory data that was too large (the size
is listed) from the LDAP server whose address and port are
recorded in the Source field. The maximum size of directory
data that the router allows is also recorded.
The router has verified the path of the certificate with the
listed subject name.
Due to the reasons listed, the certificate with the listed subject
name did not pass the path verification. The recorded reason
codes are only approximate reasons for not trusting the
certificate. See
Table 136
of the codes.
Nortel Business Secure Router 252 Configuration — Basics
Appendix B Log Descriptions 447
for the corresponding descriptions
Advertisement
Table of Contents
Troubleshooting
