final String isu = certificate.getIssuerDN().getName(); if (serialNum.equalsIgnoreCase(serialNumber) && isu.equalsIgnoreCase(issuer)) { alias = aliasCert; find = true; } isu.equalsIgnoreCase(issuer) compares the complete DN of a certificate as String. However, the String returned by certificate.getIssuerDN().getName() depends on the underlying implementation and registered security provider. Thus the complete DN must not be compared but only the individual elements of the DN separately. This means individual comparison of e.g. CN, O, L... of the certificate's DN.
| Hardware | All |
| Product | Common functionalities |
| Operating System | All |
| Component | SAML engine |
| Version | None |
| Severity | normal |
| Resolution | Accepted As Bug |
Comments
Has been solved in March