Netscape MANAGEMENT SYSTEM 4.5 - PLUG-IN Manual page 252

Overview of Mapper Modules
Default mapper plug-in modules for mapping certificates and CRLs (Continued)
Table 5-1
Plug-in module name
LdapSubjAttrMap
After you take a look at the default mapper modules, if you determine that they do
not meet your requirements entirely, you can develop a custom mapper module by
implementing the following Java interface:
com.netscape.certsrv.ldappublish.ILdapMapper
For more information about this interface, check the CMS software development
kit (SDK) installed at this location:
<server_root>/cms_sdk/cms_jdk
Be sure to take a look at the samples available at this location:
<server_root>/cms_sdk/cms_jdk/samples/mappers
When developing a custom mapper module, you may want to intercept LDAP
error 52 and reword it so that the correct error message gets logged. To give you an
example, if the publishing directory has been stopped, the server logs the following
message in its error and system logs:
Error publishing CRL MasterCRL: Cannot find a match in the LDAP
server for certificate. netscape.ldap.LDAPException: unable to
establish connection (52); DSA is unavailable.
Notice that the error message incorrectly says DSA is unavailable instead of
Directory Server is unavailable.
For instructions on how to configure a Certificate Manager to use a mapper
module, see section "Configuring a Certificate Manager to Publish Certificates and
CRLs" in Chapter 19, "Setting Up LDAP Publishing" of CMS Installation and Setup
Guide.
252 Netscape Certificate Management System Plug-ins Guide • October 2001
Function
Maps a certificate to a directory entry by searching for the entry that contains the
LDAP attribute named certSubjNameAttr whose value exactly matches the
certificate subject name. For details, see "LdapSubjAttrMap Plug-in Module" on
page 266.