Chapter 14. Publishing
Figure 14.10. Creating a New Mapper
Section 14.12.2, "Mapper Plug-in Modules "
See
14.5. Rules
Rules determine what certificate object is published in what location. Rules work independently, not in
tandem. A certificate or CRL that is being published is matched against every rule. Any rule which it
matches is activated. In this way, the same certificate or CRL can be published to a file, to an Online
Certificate Status Manager, and to an LDAP directory by matching a file-based rule, an OCSP rule,
and matching a directory-based rule.
Rules can be set for each object type: CA certificates, CRLs, user certificates, and cross-pair
certificates. The rules can be more detailed for different kinds of certificates or different kinds of CRLs.
The rule first determines if the object matches by matching the type and predicate set up in the rule
with the object. Where matching objects are published is determined by the publisher and mapper
associated with the rule.
316
for detailed information about each mapper.