Table of Contents
Advertisement
Table 5-2
Attributes for x509v3 Certificates
Attribute
ou
uid
email
The attribute names for the filters need to be attribute names from the
certificate, not from the LDAP directory. For example, some certificates have
an
attribute for the user's email address; whereas LDAP calls that attribute
e
.
mail
•
tells the server whether it should compare the client's certificate
verifycert
with the certificate found in the LDAP directory. It takes two values: on, and
off. You should only use this property if your LDAP directory contains
certificates. This feature is useful to ensure your end-users have a valid,
unrevoked certificate.
•
is a name for the attribute in the LDAP directory that contains
CmapLdapAttr
subject DNs from all certificates belonging to the user. The default for this
property is
certSubjectDN
to use this property, you have to extend the LDAP schema. For more
information, see Managing Servers with Netscape Console.
If this property exists in the
LDAP directory for an entry whose attribute (named with this property)
matches the subject's full DN (taken from the certificate). If the search doesn't
find any entries, the server retries the search using the
mappings.
FilterComps
This approach to matching a certificate to an LDAP entry is useful when it's
difficult to match entries using
•
is a property whose value is a pathname to a shared library or DLL.
Library
You only need to use this property if you create your own properties using the
certificate API. For more information, see the Netscape Enterprise Server NSAPI
Programmer's Guide.
•
is a property whose value is the name of an init function from a custom
InitFn
library. You only need to use this property if you create your own properties
using the certificate API.
For more information on these properties, refer to the examples described in
"Sample Mappings," on page 128
Description
Organizational unit
User ID
Email address
. This attribute isn't a standard LDAP attribute, so
certmap.conf
DNComps
Setting Client Security Requirements
file, the server searches the entire
DNComps
and
.
FilterComps
Chapter 5
Securing Your Enterprise Server
and
127
Advertisement
Table of Contents
Related Manuals for Netscape NETSCAPE ENTREPRISE SERVER 6.1 - 04-2002 ADMINISTRATOR
Related Products for Netscape NETSCAPE ENTREPRISE SERVER 6.1 - 04-2002 ADMINISTRATOR
- Netscape NETSCAPE CONSOLE 6.0 - MANAGING SERVERS
- Netscape NETSCAPE DIRECTORY SERVER 6.01
- Netscape NETSCAPE DIRECTORY SERVER 6.02
- Netscape NETSCAPE DIRECTORY SERVER 6.1 - DEPLOYMENT
- Netscape NETSCAPE DIRECTORY SERVER 6.2 - GATEWAY CUSTOMIZATION
- Netscape NETSCAPE ENTERPRISE SERVER 6.0 - NSAPI PROGRAMMER GUIDE
- Netscape NETSCAPE ENTERPRISE SERVER 6.1 - NSAPI PROGRAMMER GUIDE
- Netscape NETSCAPE ENTREPRISE SERVER 6.1 - 08-2002 ADMINISTRATOR
- Netscape NETSCAPE MANAGEMENT SYSTEM 6.1 - AGENT GUIDE
- Netscape NETSCAPE MANAGEMENT SYSTEM 6.1 - COMMAND-LINE
- Netscape NETSCAPE MANAGEMENT SYSTEM 6.1 - ADMINISTRATOR
- Netscape NETSCAPE MANAGEMENT SYSTEM 6.0 - CUSTOMIZATION
- Netscape NETSCAPE MANAGEMENT SYSTEM 6.0 - PLUG-IN
- Netscape NETSCAPE MANAGEMENT SYSTEM 6.0 - COMMAND-LINE
- Netscape NETSCAPE MANAGEMENT SYSTEM 6.01 - COMMAND-LINE
- Netscape NETSCAPE MANAGEMENT SYSTEM 6.2 - COMMAND-LINE