Environment
Novell eDirectory 8.8 for All Platforms
Novell Certificate Server (PKIS) 3.1.1
Novell iManager 2.6
Situation
Receiving an error -1222 from iManager 2.6 when attempting to
import a pkcs12 file into eDirectory.
Resolution
This error can have multiple causes. In this case the error
is being generated because the certificate is self-signed.
When importing a certificate into a user object PKIS expects a
non-self-signed certificate when using a pkcs12 file. It will
treat the self-signed certificate as the Trusted Root.
In order to import the certificate one must first take it out of the pkcs12 file prior to importing it. This can be done by first importing it into MicroSoft IE then exporting it to a PKCS7 file. Then this file can be imported into eDirectory.
In order to import the certificate one must first take it out of the pkcs12 file prior to importing it. This can be done by first importing it into MicroSoft IE then exporting it to a PKCS7 file. Then this file can be imported into eDirectory.