Netscape MANAGEMENT SYSTEM 4.5 - PLUG-IN Manual page 49

Table 1-5 Description of parameters defined in the PortalEnroll module
Parameter
dnpattern
ldap.ldapconn.host
ldap.ldapconn.port
Description
Specifies a string representing a subject name pattern to formulate from the
directory attributes and entry DN.
Permissible values: Any valid DN string composed from standard DN
attributes, which must be separated by commas; see "DNs in Certificate
Management System" on page 314.
The syntax is illustrated in the following example:
E=$attr.mail.1, CN=$attr.cn, OU=$dn.ou.2, O=$dn.o, C=US
This sample configuration specifies that the subject name should be
formulated as follows:
• E = the first mail LDAP attribute value in the user's entry
• CN = the (first) cn LDAP attribute value in the user's entry
• OU = the second ou value in the user's entry DN
• O = the (first) o value in the user's entry DN
• C = the string US
If this parameter value is empty or not set, the server uses E=$attr.mail,
CN=$attr.cn, O=$dn.o, C=$dn.c as the DN pattern.
This default DN pattern works well with Netscape Communicator and other
browsers. For Communicator, if you leave out E= in end-user certificates,
S/MIME may not work correctly (assuming lack of other extensions in the
certificate). Also, if C= and O= are left out, certificate display looks strange in
Communicator (when the Display Certificate button is clicked).
Specifies the host name of the portal directory.
Permissible values: The name must be in the
<machine_name>.<your_domain>.<domain> form.
Example: portalDirectory.siroe.com
Specifies the TCP/IP port at which the portal directory listens to requests
from Certificate Management System.
Permissible values: Any valid port number.
Example: 389
PortalEnroll Plug-in Module
Chapter 1 Authentication Plug-in Modules 49