Troubleshooting
Problem
When importing certificates created from a Microsoft environment the following error occurs: An error occurred during certificate validation. The issuer of the certificate may not be in the certificate store or the issuer may not be enabled.
Resolving The Problem
The error is caused by the signature algorithm of the certificates. Microsoft platforms can sign certificates with an RSASSA-PSS signature algorithm. This signature algorithm is not currently supported on IBM i. To resolve this we would need to get new certificates signed with a different signature algorithm
Here is an example certificate that shows the signature algorithm (this is a .cer certificate file that was viewed on Windows):
[{"Type":"MASTER","Line of Business":{"code":"LOB57","label":"Power"},"Business Unit":{"code":"BU058","label":"IBM Infrastructure w\/TPS"},"Product":{"code":"SWG60","label":"IBM i"},"ARM Category":[{"code":"a8m0z0000000CISAA2","label":"Digital Certificate Manager"}],"ARM Case Number":"","Platform":[{"code":"PF012","label":"IBM i"}],"Version":"All Versions"}]
Was this topic helpful?
Document Information
Modified date:
11 October 2022
UID
nas8N1021304