[Date Prev][Date Next]
[Chronological]
[Thread]
[Top]
Re: Multiple value for userCertificate
- To: OpenLDAP-software@OpenLDAP.org
- Subject: Re: Multiple value for userCertificate
- From: Diego de Felice <diego.defelice@gmail.com>
- Date: Wed, 18 Jan 2006 09:18:06 +0100
- Content-disposition: inline
- Domainkey-signature: a=rsa-sha1; q=dns; c=nofws; s=beta; d=gmail.com; h=received:message-id:date:from:to:subject:in-reply-to:mime-version:content-type:content-transfer-encoding:content-disposition:references; b=rZM4pfMA4RbnkiqdO5pNwrK4EwvAqLHJK5FCgBV604CQmc8LuEMq+ua8WPbRThCf56Gtvq8NGerujGgQ+2SbvT1t+6mafNhJstyTxgQTZQhzQjUG3MQa9A+nk9RGe0K3p6iamWrK+3csbD/52tTTw2gJqIEhBkAXgXM3LhR5AbU=
- In-reply-to: <1137533379.7109.3.camel@vadim>
- References: <e52db5160601170317s1408a0fcw@mail.gmail.com> <1137533379.7109.3.camel@vadim>
Hi, I'm using OpenLDAP: slapd 2.2.26 (Sep 15 2005 15:18:56).
In core.schema I've something like this:
# Must be transferred using ;binary
# with certificateExactMatch rule (per X.509)
attributetype ( 2.5.4.36 NAME 'userCertificate'
DESC 'RFC2256: X.509 user certificate, use ;binary'
EQUALITY certificateExactMatch
SYNTAX 1.3.6.1.4.1.1466.115.121.1.8 )
and this:
objectclass ( 2.5.6.21 NAME 'pkiUser'
DESC 'RFC2587: a PKI user'
SUP top AUXILIARY
MAY userCertificate )
I hope to have not done some mess in the schema :-)
On 17/01/06, vadim <vadim.tarassov@swissonline.ch> wrote:
> Hallo Diego,
>
> what version of OL do you use? Since 2.2 OL can compare certificates,
> which also means that you may have several values of the
> "userCertificate" attribute.
>
> Best regards, vadim tarassov
--
Diego de Felice