Red Hat CERTIFICATE SYSTEM 8.0 - RELEASE NOTES Release Note page 14

Red Hat Certificate System 8.0
Bug Number
250188
251226
251569
482935
253323
253657
285241
286491
357581
435170
435476
437188
439027
441896
442387
443657
480804
442239
443120
443413
443417
445436
458499
463343
14
Description
During subsystem configuration, the Authority Key Identifier extension was not be genera
Opening the CA console threw a null pointer exception referencing the CMSAdmin class b
The search time limit for end-entities pages set in the web.xml file was being inconsisten
process (ns-slapd) to reach 100% CPU.
When using the Certicom PKCS #11 module with the OCSP, the OCSP failed to start beca
was missing in the database token configuration.
When attempting to enroll 64K smart cards in the TPS, key generation failed, causing the
with the newest CoolKey applet.
The Enterprise Security Client on Microsoft Windows and Apple MacIntosh would intermit
in the View Certificates window, even though dual certificates (signing and encryption) h
The OCSP signing certificate incorrectly was generated with the Basic Constraints value s
(isCA=true).
The Validity Constraints extension was not properly implemented in the profile framework
were not honored.
Going through the RA configuration wizard could blank out the nss.conf file that was cre
initial installation was run as root, but the configuration process was run as pkiuser, w
problems.
The DRM failed to start when self-tests were enabled.
When a user requested a certificate through the CA's end-entities pages, the enrollment f
option and claimed to archive the new keys successfully, even though the profile was not
keys were archived.
Certificates could not be imported into a subsystem instance's certificate database using t
A number of different actions in the CA console would make the console freeze and hang
• Deleting certificates from the certificate database.
• Changing the automated notifications configuration.
• Editing CRL issuing points.
• Changing the validity nesting requirement setting.
The contents of CRL issuing points entry fields were not being shown in the console wind
typed when adding or editing CRL issuing points were visible.
Trying to delete an imported CA certificate in the console returned the message You're no
the deletion failed.
The notification email sent to an agent for a new certificate request had the wrong URL to
Even if the requester entered his email when submitting a certificate request, the notificati
requestor email is VALUE UNKNOWN.
Searching for certificates through the Revoke Certificates page in the CA's agent service
used for search filter generation have been updated to enhance the filtering options.
The Unique Subject Name Constraint rejected requests with duplicate subject names eve
expired (when the duplicate name should have been allowed). Along with fixes to this erro
constraint to allow administrators to set whether to allow duplicate subject names as long
Key generation failed on the DRM when it was configured to use nCipher netHSM.