Article PS030304105
Problem DescriptionRoot (self-signed) and other CA certificates created by AspEncrypt (version 2.1.0.2 and earlier), when used for signing other certificates in a CA trust hierarchy, are displayed by Certificate Manager with the following warning:
SolutionThe warning is because the BasicConstraints field on the root certificate is incorrect. In order to be acceptable as a CA certificate, it needs to have the "key cert sign" bit set. Microsoft did not enforce the BasicConstraints field until fairly recently and eventually fixed this as part of their recent security push.
Created: 3/4/2003 4:47:17 PM
Copyright © Persits Software, Inc. 1998 - 2023 |