Table of Contents
Advertisement
Extension-Specific Policy Module Reference
Table 11-39 SubjectAltNameExt Configuration Parameters (Continued)
Parameter
Before you edit the default rule, you should read the additional details about the
attributes that are set in the default policy rule.
The first two attributes,
AUTH_TOKEN.mailalternateaddress
for storing end users' email addresses in an LDAP directory. These attributes
enable you to include a user's email address as an alternative name in the
certificate. Remember that you need to specify the LDAP attribute for users' email
addresses as a part of configuring the server to use a specific directory for
authentication—which means for the default rule to set end users' email addresses
in the subject alternative name extension, you must ensure the following:
•
The server is configured for directory-based, directory- and PIN-based, or NIS
server based (using directory attributes for forming subject names) enrollment;
that is, you have created and configured an authentication instance.
•
The
mail
The third attribute,
the subject name in an enrollment request—it is an HTTP input value that gets
added to the request when a user uses the manual enrollment form; for details.
558
Netscape Certificate Management System Administrator's Guide • June 2003
Description
• Select dNSName if the request-attribute value is a DNS name. For example,
corpDirectory.example.com.
• Select ediPartyName if the request-attribute value is a EDI party name. For
example, Example Corporation.
• Select URL if the request-attribute value is a non-relative URI that includes
both a scheme (for example, http) and a fully qualified domain name or IP
address of the host. For example, http://hr.example.com.
• Select iPAddress if the request-attribute value is a valid IP address
specified in dot-separated numeric component notation. For example,
128.21.39.40.
• Select OID if the request-attribute value is a unique, valid OID specified in
the dot-separated numeric component notation. For example,
1.2.3.4.55.6.5.99.
• Select otherName if the request-attribute value is the absolute path to the
file that contains the base-64 encoded string of the subject alternative name.
For example, /usr/netscape/servers/ext/san/othername.txt.
AUTH_TOKEN.mail
ldapStringAttributes
or
mailalternateaddress
HTTP_PARAMS.csrRequestorEmail
and
, are standard LDAP attributes typically used
parameter in the authentication instance is set to
, or to both.
, is the email component of
Advertisement
Table of Contents
Related Manuals for Netscape NETSCAPE MANAGEMENT SYSTEM 6.2 - ADMINISTRATOR
Related Products for Netscape NETSCAPE MANAGEMENT SYSTEM 6.2 - ADMINISTRATOR
- Netscape NETSCAPE MANAGEMENT SYSTEM 6.0 - CUSTOMIZATION
- Netscape NETSCAPE MANAGEMENT SYSTEM 6.0 - PLUG-IN
- Netscape NETSCAPE MANAGEMENT SYSTEM 6.01 - CUSTOMIZATION
- Netscape NETSCAPE MANAGEMENT SYSTEM 6.01 - PLUG-IN
- Netscape NETSCAPE MANAGEMENT SYSTEM 6.0 - AGENT GUIDE
- Netscape NETSCAPE MANAGEMENT SYSTEM 6.0 - COMMAND-LINE
- Netscape NETSCAPE MANAGEMENT SYSTEM 6.01 - AGENT GUIDE
- Netscape NETSCAPE MANAGEMENT SYSTEM 6.01 - COMMAND-LINE
- Netscape NETSCAPE MANAGEMENT SYSTEM 6.1 - AGENT GUIDE
- Netscape NETSCAPE MANAGEMENT SYSTEM 6.0
- Netscape NETSCAPE MANAGEMENT SYSTEM 6.1 - COMMAND-LINE
- Netscape NETSCAPE MANAGEMENT SYSTEM 6.2 - AGENT GUIDE
- Netscape NETSCAPE MANAGEMENT SYSTEM 6.2 - COMMAND-LINE
- Netscape NETSCAPE MANAGEMENT SYSTEM 6.1 - ADMINISTRATOR
- Netscape NETSCAPE MANAGEMENT SYSTEM 4.5 - CUSTOMIZATION GUIDE
- Netscape NETSCAPE MANAGEMENT SYSTEM 4.5 - PLUG-IN