Constraints Reference
Table 11-23 Signing Algorithms Constraint Configuration Parameters
Parameter
signingAlgsAllowed
Subject Name Constraint
This constraint implements the subject name constraint. It checks if the subject name in the
certificate request satisfies the criteria.
Table 11-24 Subject Name Constraint Configuration Parameters
Parameter
Pattern
Validity Constraint
This constraint implements the validity constraint. It checks if the validity in the certificate
request satisfies the criteria.
458
Red Hat Certificate System Administrator's Guide • September 2005
Description
List the signing algorithms that can be specified for use in
signing this certificate. Specify any or all of the following:
MD2withRSA,MD5withRSA,SHA1withRSA
Description
Specifies a regular expression specified as a string, all
regular-expression constructs listed in
http://java.sun.com/j2se/1.4.1/docs/api/jav
a/util/regex/Pattern.html are supported.
For example, if you have the pattern of the subject name
constraint set to UID=.*, the certificate profile framework will
check if the subject name in the certificate request matches the
pattern. Assumed that you have UID=user, O=Example,
C=US as the subject name, the value satisfies the pattern UID=.*
. If you have CN=user, O=example,C=US, the value will
not satisfy the pattern.
UID=.* means the subject name must have UID=., .* means
zero or more times of any character