SSL Certificate Fails to Adhere to Basic Constraints / Key Usage Extensions
Medium Nessus Plugin ID 56284
SynopsisAn X.509 certificate in the chain used by this service fails to adhere to all of its basic constraints and key usage extensions.
DescriptionAn X.509 certificate sent by the remote host contains one or more violations of the restrictions imposed on it by RFC 5280. This means that either a root or intermediate Certificate Authority signed a certificate incorrectly.
Certificates that fail to adhere to the restrictions in their extensions may be rejected by certain software. The existence of such certificates indicates either an oversight in the signing process, or malicious intent.
SolutionAlter the offending certificate's extensions and have it signed again.