1. Manuals
  2. Brands
  3. Netscape Manuals
  4. Software
  5. NETSCAPE MANAGEMENT SYSTEM 6.0 - PLUG-IN
  6. Manual

Subjectaltnameext Plug-In Module - Netscape MANAGEMENT SYSTEM 6.0 - PLUG-IN Manual

Hide thumbs
Table of Contents

Advertisement

SubjectAltNameExt Plug-in Module

Table 4-25 Description of parameters defined in the RemoveBasicConstraintsExt module
Parameter
enable
predicate
SubjectAltNameExt Plug-in Module
The
policy. This policy enables you to configure Certificate Management System to add
the Subject Alternative Name Extension defined in X.509 and PKIX standard RFC
2459 (see
enables you to bind additional identities—such as Internet electronic mail address,
a DNS name, an IP address, and a uniform resource indicator (URI)—to the subject
of the certificate.
The standard suggests that if the certificate subject field contains an empty
sequence, then the subject alternative name extension must contain the subject's
alternative name and that the extension be marked critical. For general guidelines
on setting the subject alternate name extension in certificates, see
"subjectAltName" on page 354.
The subject alternative name extension policy in Certificate Management System
enables you to include values of certificate-request attributes in the extension. You
can include any number of attributes as long as the attribute values conform to any
of the supported general-name forms: rfc822Name, X.500 directory name, DNS
name, EDI party name, URL, IP address, object identifier, and Other name.
232
Netscape Certificate Management System Plug-Ins Guide • March 2002
Description
Specifies whether the rule is enabled or disabled. Check the box to enable the
rule (default). Uncheck the box to disable the rule.
• If you enable the rule and set the remaining parameters correctly, the server
checks certificate requests for Basic Constraints extension and removes it.
• If you disable the rule, the server does not check the requests for Basic
Constraints extension; it ignores the values in the remaining fields.
Specifies the predicate expression for this rule. If you want this rule to be applied
to all certificate requests, leave the field blank (default). To form a predicate
expression, see section "Using Predicates in Policy Rules" in Chapter 18, "Setting
Up Policies" of CMS Installation and Setup Guide.
Example: HTTP_PARAMS.certType==client
SubjectAltNameExt
http://www.ietf.org/rfc/rfc2459.txt
plug-in module implements the subject alternative name
) to certificates. The extension

Advertisement

Table of Contents
loading

Related Manuals for Netscape NETSCAPE MANAGEMENT SYSTEM 6.0 - PLUG-IN

Related Content for Netscape NETSCAPE MANAGEMENT SYSTEM 6.0 - PLUG-IN

This manual is also suitable for:

Certificate management system 6.0

Table of Contents