Preview Tool

Cisco Bug: CSCvt32070 - WSA validates certificates based on CN and not by SAN.

Last Modified

Jun 08, 2020

Products (1)

  • Cisco Web Security Appliance

Known Affected Releases


Description (partial)

There are various attribute value pairs in certificate - common name (CN) and Subject alternative name (SAN).
As of now WSA only checks for CN and ignores SAN.

When using certificates of WSA for management and decryption or any integration with WSA which is based on certificates.
Bug details contain sensitive information and therefore require a account to be viewed.

Bug Details Include

  • Full Description (including symptoms, conditions and workarounds)
  • Status
  • Severity
  • Known Fixed Releases
  • Related Community Discussions
  • Number of Related Support Cases
Bug information is viewable for customers and partners who have a service contract. Registered users can view up to 200 bugs per month without a service contract.