Cannot import a CA certificate with unescaped single quote in Subject Common Name
Last Updated June 20, 2019
Messaging Gateway (SMG) will not import Certificate Authority (CA) certificates into the trusted CA list if the CA certificate has an unescaped single quote in the Subject Common Name field of the certificate. The certificate import will return success as if the certificate had been imported but the CA certificate will not appear in Administration > Certificates > Certificate Authority.
Additionally, attempts to import certifictes signed by the problematic CA certificate will fail with the error that the trusted certificate chain could not be created.
Jun 11 2019 15:56:18 [http-bio-443-exec-14] [CertificateSettingsManager] ERROR - com.symantec.smg.controlcenter.internal.dataaccess.DataAccessException: An unexpected database error has occurred. Please contact your system administrator. ; nested exception is:
java.sql.SQLSyntaxErrorException: You have an error in your SQL syntax; check the manual that corresponds to your MariaDB server version for the right syntax to use near 's Encrypt Authority X3, O=Let's Encrypt, C=US'' at line 13
where cert_subject = 'CN=Let's Encrypt Authority X3, O=Let's Encrypt, C=US';
This is a known issue and will be addressed with a future release.
Subscribing will provide email updates when this Article is updated. Login is required to Subscribe