Microsoft KB Archive/247814: Difference between revisions
(importing KB archive) |
m (Text replacement - """ to """) |
||
| Line 57: | Line 57: | ||
Event ID: 5005<br /> | Event ID: 5005<br /> | ||
Source: MSExchangeKMS<br /> | Source: MSExchangeKMS<br /> | ||
Description: Mailbox | Description: Mailbox "o=Orgname, ou=Sitename, cn=Recipients, cn=Subcontainer1, cn=Subcontainer2, cn=Subcontainer3, cn=Mailbox" has failed being enabled or recovered.<br /> | ||
| Line 68: | Line 68: | ||
== CAUSE == | == CAUSE == | ||
Certificate Server 1.0 enforces a 64-character limit on the Subject of a certificate. The Subject is a concatenation of each Relative Distinguished Name (RDN) within the Distinguished Name (DN). In the example above, the DN is | Certificate Server 1.0 enforces a 64-character limit on the Subject of a certificate. The Subject is a concatenation of each Relative Distinguished Name (RDN) within the Distinguished Name (DN). In the example above, the DN is "o=Orgname, ou=Sitename, cn=Recipients, cn=Subcontainer1, cn=Subcontainer2, cn=Subcontainer3, cn=Mailbox". The limit is placed on the concatenation of "Orgname, Sitename, Recipients, Subcontainer1, Subcontainer2, Subcontainer3, Mailbox", which is (7 + 8 + 10 + 13 + 13 + 13 + 7). This exceeds the 64-character limit, and therefore Certificate Server cannot generate a certificate for this mailbox. | ||
</div> | </div> | ||
Latest revision as of 13:51, 21 July 2020
Article ID: 247814
Article Last Modified on 10/27/2006
APPLIES TO
- Microsoft Certificate Server 1.0
- Microsoft Exchange Server 5.5 Standard Edition
This article was previously published under Q247814
SYMPTOMS
When using Key Management (KM) Server and Certificate Server to issue V3 certificates, some mailboxes may not be able to obtain a certificate. After submitting a security token from Microsoft Outlook, the following error message is returned:
Additionally, an event similar to the following is logged in the application log of the Exchange Server computer:
Event ID: 5005
Source: MSExchangeKMS
Description: Mailbox "o=Orgname, ou=Sitename, cn=Recipients, cn=Subcontainer1, cn=Subcontainer2, cn=Subcontainer3, cn=Mailbox" has failed being enabled or recovered.
CAUSE
Certificate Server 1.0 enforces a 64-character limit on the Subject of a certificate. The Subject is a concatenation of each Relative Distinguished Name (RDN) within the Distinguished Name (DN). In the example above, the DN is "o=Orgname, ou=Sitename, cn=Recipients, cn=Subcontainer1, cn=Subcontainer2, cn=Subcontainer3, cn=Mailbox". The limit is placed on the concatenation of "Orgname, Sitename, Recipients, Subcontainer1, Subcontainer2, Subcontainer3, Mailbox", which is (7 + 8 + 10 + 13 + 13 + 13 + 7). This exceeds the 64-character limit, and therefore Certificate Server cannot generate a certificate for this mailbox.
STATUS
Microsoft has confirmed that this is a problem in the Microsoft products that are listed at the beginning of this article.
Additional query words: fail KMS
Keywords: kbprb KB247814
