Operational Defect Database

BugZero found this defect 2699 days ago.

WatchGuard Technologies | kA10H000000g3TpSAI

CA Manager creates certificate requests with lifetime values that cause import to fail

Last update date:

1/11/2017

Affected products:

Firebox M200

Firebox M300

Firebox M270

Firebox M370

Firebox M470

Firebox M570

Firebox M670

Firebox M290

Firebox M390

Firebox M400

Firebox M500

Firebox M440

Affected releases:

All

Fireware

11.x

11.10.x

11.10

11.10.1

11.10.2

11.10.3

11.10.4

11.10.5

11.10.6

11.10.7

Fixed releases:

All

Description:

Issue

When you use CA Manager to create a Certificate Signing Request, you can select a very long lifetime value. CA Manager will reject any certificate with an expiration date later than 2049-12-31 23:59:59.

Workaround/Solution

When you create the Certificate Signing Request, we recommend you set a lifespan of less than 1850 days (roughly 5 years), which is appropriate for most networks.

Additional Resources / Links

Share:

BugZero® Risk Score

What's this?

Coming soon

Status

Resolved

Learn More

Search:

...