[cabf_validation] Revision to OU requirements

Ryan Sleevi sleevi at google.com
Wed Sep 2 13:53:26 MST 2020


On Wed, Sep 2, 2020 at 4:29 PM Jeremy Rowley <jeremy.rowley at digicert.com>
wrote:

> Yeah – we wanted to see what would happen if we turned it off. So far,
> there hasn’t been  a lot of noise. This is the first one we’ve encountered.
>
>
>
> VMware generate the OU as part of the cert request to create a unique
> identifier. The tool uses that unique identifier to do the installation.
> Removing the OU is breaking the VMware install tool and causing it not to
> load the certificate. We’re reaching out to them to see if we can get them
> to update their software and stop requiring OU.
>

Thanks, that was going to be my next step as well. The fact that those same
documents specifically state OpenSSL 0.9.8 is required is, well, troubling,
considering that's been EOL'd since 2015-12-31.

>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.cabforum.org/pipermail/validation/attachments/20200902/12d43a35/attachment.html>


More information about the Validation mailing list