Use An Ldap Directory - Netscape MANAGEMENT SYSTEM 4.5 Installation And Setup Manual

In the Policy Editor dialog box, provide the following information:
10.
minSize:
1024
maxSize:
2048
exponents: accept the default setting
enable:
true
predicate:
HTTP_PARAMS.certType==client
The indicates that this policy will be applied to certificate requests
predicate
for client certificates only. The
the RSA key pair used to generate the request; requests with shorter RSA keys
will be rejected. The policy is turned on for all requests to this Certificate
Manager by setting
Click OK to save the changes. The
11.
in the Policy Rules Management tab.
That is all you need to do. The policy will now be enforced on all requests for client
certificates. You will see how this policy works in the next part of the
demonstration when you enroll for a client certificate.

Use an LDAP Directory

To test using Certificate Management System with an LDAP directory, you will use
Netscape Console's CMS window to enable directory-based authentication using
the configuration directory that you installed with the demo. You will add a user
( ) to the directory, then enroll for a certificate as
User2
enrollment.
sets the minimum allowed length for
minSize
to true.
enabled
RSAKeyRule
Using the Default Demo
should now be listed as enabled
, using directory-based
User2
Chapter 3 Default Demo Installation 145