Table of Contents
Advertisement
NISAuth Plug-in Module
Description of parameters defined in the NISAuth module (Continued)
Table 1-4
Parameter
ldapStringAttributes
ldapByteAttributes
ldap.ldapconn.host
ldap.ldapconn.port
40
Netscape Certificate Management System Plug-Ins Guide • May 2002
Description
Specifies the list of LDAP string attributes that should be considered authentic
for the end entity. If specified, the values corresponding to these attributes
will be copied from the authentication directory into the authentication
token—that is, values retrieved from this parameter can be used by policy
modules to formulate subject names for certificates or to make other policy
decisions. For details, see "SubjectAltNameExt Plug-in Module" on page 232.
Entering values for this parameter is optional.
Permissible values: Any valid LDAP string attributes, separated by commas.
Example: mail
(This sample configuration specifies that the value of the mail attribute
should be stored in the authentication token.)
Specifies the list of LDAP byte (binary) attributes that should be considered
authentic for the end user. If specified, the values corresponding to these
attributes will be copied from the LDAP directory into the authentication
token for use by other modules—that is, values retrieved from this parameter
can be used by policy modules to make certain policy decisions or to add
additional information to users' certificates.
For example, assume you have defined an LDAP binary attribute for storing
users' pictures or fingerprints in your directory. You could develop a policy
plug-in that adds users' pictures to their certificates as extensions.
Entering values for this parameter is optional.
Permissible values: Any valid LDAP byte attributes, separated by commas.
Example: jpegPhoto
This sample configuration specifies that the value of the LDAP attribute
named jpegPhoto (which is included in the standard inetOrgPerson
object class) should be stored in the authentication token and be used to put
the user's picture in his or her certificate.
Specifies the host name of the LDAP directory.
Permissible values: The name must be in the
<machine_name>.<your_domain>.<domain> form.
Example: corpDirectory.example.com
Specifies the TCP/IP port at which the LDAP directory listens to requests
from Certificate Management System.
Permissible values: Any valid port number.
Example: 389
Advertisement
Table of Contents
Related Manuals for Netscape NETSCAPE MANAGEMENT SYSTEM 6.01 - PLUG-IN
Related Products for Netscape NETSCAPE MANAGEMENT SYSTEM 6.01 - PLUG-IN
- Netscape NETSCAPE MANAGEMENT SYSTEM 6.0 - CUSTOMIZATION
- Netscape NETSCAPE MANAGEMENT SYSTEM 6.0 - PLUG-IN
- Netscape NETSCAPE MANAGEMENT SYSTEM 6.01 - CUSTOMIZATION
- Netscape NETSCAPE MANAGEMENT SYSTEM 6.0 - AGENT GUIDE
- Netscape NETSCAPE MANAGEMENT SYSTEM 6.0 - COMMAND-LINE
- Netscape NETSCAPE MANAGEMENT SYSTEM 6.01 - AGENT GUIDE
- Netscape NETSCAPE MANAGEMENT SYSTEM 6.01 - COMMAND-LINE
- Netscape NETSCAPE MANAGEMENT SYSTEM 6.1 - AGENT GUIDE
- Netscape NETSCAPE MANAGEMENT SYSTEM 6.0
- Netscape NETSCAPE MANAGEMENT SYSTEM 6.1 - COMMAND-LINE
- Netscape NETSCAPE MANAGEMENT SYSTEM 6.2 - AGENT GUIDE
- Netscape NETSCAPE MANAGEMENT SYSTEM 6.2 - COMMAND-LINE
- Netscape NETSCAPE MANAGEMENT SYSTEM 6.1 - ADMINISTRATOR
- Netscape NETSCAPE MANAGEMENT SYSTEM 6.2 - ADMINISTRATOR
- Netscape NETSCAPE MANAGEMENT SYSTEM 4.5 - CUSTOMIZATION GUIDE
- Netscape NETSCAPE MANAGEMENT SYSTEM 4.5 - PLUG-IN