BUG REPORT: Multiple Certificates with identical names are not used for signature verification
|Article:TECH201987|||||Created: 2013-01-24|||||Updated: 2013-01-24|||||Article URL http://www.symantec.com/docs/TECH201987|
When using PGP Universal Server and PGP Desktop Client and few certificates with the same subject information (CN, O, OU and etc.) exist in your environment, PGP doesn't handle the certificates properly.
For example when an old and a new certificate assigned to the PGP Universal Network interface are added to the trusted keys, the PGP Desktop client might still displays the PGP Alert about a wrong certificate.
PGP Universal server 3.2.x
PGP Desktop client 10.2.x
Symantec detected the root cause of the problem in the PGP SDK component.
Symantec Corporation is committed to product quality and satisfied customers. This issue is currently being considered by Symantec Corporation to be addressed in a forthcoming version or Maintenance Pack of the product. Please be sure to refer back to this document periodically as any changes to the status of the issue will be reflected here.
The following is a known temporary workaround for the issue until the version/maintenance pack is released:
This issue can be temporarily resolved by removal of the second/old certificate with identical subject.
Multiple Certificates with identical names are not used for signature verification
Article URL http://www.symantec.com/docs/TECH201987