Table of Contents
Advertisement
Mappers
LdapDNCompsMap
The
LdapDNCompsMap
This mapper enables you to configure a Certificate Manager to map a certificate to
an LDAP directory entry by constructing the entry's distinguished name from
components (such as
then using it as the search DN to locate the entry in the directory. You can use this
mapper to locate the following:
•
The CA's entry in the directory for publishing the CA certificate and the CRL.
•
End-entity entries in the directory for publishing end-entity certificates.
In general, the mapper takes DN components to build the search DN. The mapper
also takes an optional root search DN. The server uses the DN components to form
an LDAP entry to begin a subtree search and the filter components to form a search
filter for the subtree. If none of the DN components are configured, the server uses
the base DN for the subtree. If the base DN is null and none of the DN components
match, an error is returned. If none of the DN components and filter components
match, an error is returned. If the filter components are null, a base search is
performed.
Note that both
components or attributes separated by commas. The parameters don't accept
multiple entries of an attribute; for example, you can set
but not to
example, if your directory entries contain multiple
multiple
code for the
directory:
The discussion below explains how mapping by DN components works. It is
recommended that you read this before configuring a Certificate Manager to use
this mapper.
Subject names in certificates are in distinguished-name format. A distinguished name
(DN) uniquely identifies an entry in an LDAP directory. The DN consists of
components that help identify the entry; for details, see Appendix I,
"Distinguished Names
The following components are commonly used in DNs:
•
UID
•
CN
•
OU
642
Netscape Certificate Management System Administrator's Guide • February 2003
plug-in module implements the DN components mapper.
,
CN
OU
and
DNComps
. If there's a need for you to support such a filter, for
CN,OU2,OU1
s in your
OU
filterComps
LdapDNCompsMap
<server_root>/cms_sdk/cms_jdk/samples/mappers
, which represents the user ID of a user in the directory
, which represents the common name of a user in the directory
, which represents an organizational unit in the directory
,
, and
) specified in the certificate subject name, and
O
C
parameters accept valid DN
filterComps
for filtering entries, you can modify the source
module. The java class for the module is in this
to
filterComps
s and you want to use
OU
,
CN,OU
Advertisement
Table of Contents
Related Manuals for Netscape NETSCAPE MANAGEMENT SYSTEM 6.1 - ADMINISTRATOR
Related Products for Netscape NETSCAPE MANAGEMENT SYSTEM 6.1 - ADMINISTRATOR
- Netscape NETSCAPE MANAGEMENT SYSTEM 6.0 - CUSTOMIZATION
- Netscape NETSCAPE MANAGEMENT SYSTEM 6.0 - PLUG-IN
- Netscape NETSCAPE MANAGEMENT SYSTEM 6.01 - CUSTOMIZATION
- Netscape NETSCAPE MANAGEMENT SYSTEM 6.01 - PLUG-IN
- Netscape NETSCAPE MANAGEMENT SYSTEM 6.0 - AGENT GUIDE
- Netscape NETSCAPE MANAGEMENT SYSTEM 6.0 - COMMAND-LINE
- Netscape NETSCAPE MANAGEMENT SYSTEM 6.01 - AGENT GUIDE
- Netscape NETSCAPE MANAGEMENT SYSTEM 6.01 - COMMAND-LINE
- Netscape NETSCAPE MANAGEMENT SYSTEM 6.1 - AGENT GUIDE
- Netscape NETSCAPE MANAGEMENT SYSTEM 6.0
- Netscape NETSCAPE MANAGEMENT SYSTEM 6.1 - COMMAND-LINE
- Netscape NETSCAPE MANAGEMENT SYSTEM 6.2 - AGENT GUIDE
- Netscape NETSCAPE MANAGEMENT SYSTEM 6.2 - COMMAND-LINE
- Netscape NETSCAPE MANAGEMENT SYSTEM 6.2 - ADMINISTRATOR
- Netscape NETSCAPE MANAGEMENT SYSTEM 4.5 - CUSTOMIZATION GUIDE
- Netscape NETSCAPE MANAGEMENT SYSTEM 4.5 - PLUG-IN