We have A.CA which is root CA(self signed), B.CA 's cert signed with A.CA and client certificate(cucm) signed with B.CA but while I try to upload certificate we are getting --csr san and certificate san does not match-- error. All host names are lowercase.
But for CMS we had same process while signing cms certificates. For root CA we conjugated two root certificate as like B.CA.cer+A.CA.cer single file. ->> BA.cer .
#webadmin certs cms1a.key cms1a.cer BA.cer
It worked for CMS.
Retuning to the Cucm I uploaded A.cer and B.cer also conjugated BA.cer files as tomcat trust. Unfortunately I couldn't pass signing process.
Any idea guys ?
Quick question, is the CA Server reachable to from where you installing Certificate ?
Does the certificate you got back from your CA has the same CN and SAN entries you submitted in the CSR?