The Enterprise Vault SSL SMTP certificate shows incorrect details if the certificate contains the 'chain hierarchy'

book

Article ID: 100048642

calendar_today

Updated On:

Description

Error Message

The imported certificate in targets | SMTP | Properties | SMTP Archiving | Change Security shows the details ('Issue to:', 'Start date:' and 'Expiry date:') of the certification authority 

image.png

Instead, the SSL certificate without the 'chain hierarchy' would properly show its own details.

image.png

Note* If Microsoft Certificate Authority (CA) is being used, then export wizard can be used to export the pfx file and un-check the box for “Include all certificates in the certification path if possible” to get the pfx file imported without the Certificate chain hierarchy.

Cause

This is a known issue with pfx certificates files containing related certificates like the Certification Authority (CA).

Resolution

This issue has been fixed from Enterprise Vault 12.5.3 

https://downloads.enterprisevault.com/ 

 

 

Issue/Introduction

Incorrect details are shown in the security setting for the EV SSL if the certificate imported contains the chain hierarchy. Alternate names do not show additional Subject Alternative Names (SAN) originally contained in the TLS certificate, causing issues during SMTP workflow.

Additional Information

JIRA: CFT-2734 SW Download: UPD790480