[Date Prev][Date Next] [Chronological] [Thread] [Top]

RE: CLient certificates



> -----Original Message-----
> From: owner-openldap-software@OpenLDAP.org
> [mailto:owner-openldap-software@OpenLDAP.org]On Behalf Of
mattyml@bellsouth.net

> Howdy folks,
>
> I did some poking around in the archives and on google, and couldn't
> seem to find a conscise writeup on integrating client certificates
> into OpenLDAP. Does anyone have any good URLs stashed away?
> I am also curious which attributes can be used to manage these, and
> what encoding mechanism is recommended for storing these in the
> directory.
>
> Thanks for any insight/pointers,
> Ryan

That's what the userCertificate attribute is for. Store it in DER format.
slapd's internal certificateMatchingRule handlers operate on DER format.

  -- Howard Chu
  Chief Architect, Symas Corp.       Director, Highland Sun
  http://www.symas.com               http://highlandsun.com/hyc
  Symas: Premier OpenSource Development and Support >