Currently, the "Issue Checker" does not show all the profiles shown in the "Certificate Profiles" page.
This happens because the access check method that the Issue Checker uses does not allow access to profiles with "Any CA" selected if the admin does not have access to the /ca/ access rule.
1. Create a new certificate profile configured by cloning SERVER. Set the Available CA to "Any CA", but leave the other settings unchanged.
2. View Home page. There should be a warning for the profile.
3. Create a CA Admin with access to only one or a few CAs.
4. Log with the CA Admin
No warning is shown for the new profile. But it is listed under Certificate Profiles, so the admin does have (view) access to it.
The warning for the new profile should be shown for the new CA Admin.