Certificate Audit Log Entries
The audit consists of the subject name and serial number of the identity and its signing certificate. The identity certificate also contains an issuer attribute, which is identical to the signing certificate subject name. Although many signing certificates may exist between the identity and final root certificate, the audit includes only the last two certificates in a chain: an intermediate certificate and an end certificate.
In the SSTR and CTRC records, the CERT contains the common name and serial number of the key certificate, and the CERI contains the common name of the issuer and the serial number of an intermediate or root CA. They may also contain the certificate serial number, for example:
| CERT=(/C=US/ST=MA/L=Marshfield/O=test.org/OU=Dev/CN=Test
ID/SN=99c0ce01382e6c83)| CERI=(/C=US/ST=MA/L=Marshfield/O=test.org/CN=root CA/SN=da870666bbfb5538) |
Connect:Direct® Secure Plus certificate audits may contain the following fields:
| Field Name | Abbreviation | Max Lengths (RFC 2459) |
|---|---|---|
| Common Name | CN | 64 |
| Country | C | 2 |
| Locality | L | 128 |
| State | ST | 128 |
| Organization | O | 64 |
| Organization Unit | OU | 64 |
| Email Address | emailAddress | 128 |
| Serial Number | SN | 128 (estimated) |