Bug 1610718

Summary: caDirUserCert on CA End-Entity Page not showing RSA algorithm option in drop down.
Product: Red Hat Enterprise Linux 8 Reporter: Pritam Singh <prisingh>
Component: pki-coreAssignee: RHCS Maintainers <rhcs-maint>
Status: CLOSED UPSTREAM QA Contact: Asha Akkiangady <aakkiang>
Severity: high Docs Contact:
Priority: high    
Version: 8.3CC: ascheel, mharmsen, msauton
Target Milestone: rc   
Target Release: ---   
Hardware: All   
OS: Linux   
Whiteboard:
Fixed In Version: Doc Type: If docs needed, set a value
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2020-03-16 13:23:08 UTC Type: Bug
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:

Description Pritam Singh 2018-08-01 09:25:48 UTC 
Description of problem:

caDirUserCert on CA End-Entity page not showing RSA algo. implementation as default selection of ECC in key parameters, as in result request is getting rejected, because 1024,2048 curve types for ECC

Version-Release number of selected component (if applicable):

PKI Command-Line Interface 10.5.9-3.el7

Steps to Reproduce:

1. I have created 'test' user and added in ldap directory server.

2. I have enabled the "UidPwdDirAuth" plugin through pkiconsole.

4. Go to End-Entity page and submit request to 'Directory-Authenticated User Dual-Use Certificate Enrollment' profile (caDirUserCert)

Parameters: LDAP uid="test",LDAP password="redhat"

so it is not showing RSA algorithm in drop down but it takes RSA key length as a ECC curve parameter


Actual results:

Sorry, your request has been rejected. The reason is "Request 25 Rejected - Key Parameters 1024,2048,3072,4096 Not Matched"

Your request ID is 25.


Expected results:

It should generate the certificate.


Additional info: