[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: Multiple value for userCertificate

To: OpenLDAP-software@OpenLDAP.org
Subject: Re: Multiple value for userCertificate
From: Diego de Felice <diego.defelice@gmail.com>
Date: Wed, 18 Jan 2006 09:18:06 +0100
Content-disposition: inline
Domainkey-signature: a=rsa-sha1; q=dns; c=nofws; s=beta; d=gmail.com; h=received:message-id:date:from:to:subject:in-reply-to:mime-version:content-type:content-transfer-encoding:content-disposition:references; b=rZM4pfMA4RbnkiqdO5pNwrK4EwvAqLHJK5FCgBV604CQmc8LuEMq+ua8WPbRThCf56Gtvq8NGerujGgQ+2SbvT1t+6mafNhJstyTxgQTZQhzQjUG3MQa9A+nk9RGe0K3p6iamWrK+3csbD/52tTTw2gJqIEhBkAXgXM3LhR5AbU=
In-reply-to: <1137533379.7109.3.camel@vadim>
References: <e52db5160601170317s1408a0fcw@mail.gmail.com> <1137533379.7109.3.camel@vadim>

Hi, I'm using OpenLDAP: slapd 2.2.26 (Sep 15 2005 15:18:56).

In core.schema I've something like this:

# Must be transferred using ;binary
# with certificateExactMatch rule (per X.509)
attributetype ( 2.5.4.36 NAME 'userCertificate'
        DESC 'RFC2256: X.509 user certificate, use ;binary'
        EQUALITY certificateExactMatch
        SYNTAX 1.3.6.1.4.1.1466.115.121.1.8 )

and this:

objectclass ( 2.5.6.21 NAME 'pkiUser'
	DESC 'RFC2587: a PKI user'
	SUP top AUXILIARY
	MAY userCertificate )

I hope to have not done some mess in the schema :-)

On 17/01/06, vadim <vadim.tarassov@swissonline.ch> wrote:
> Hallo Diego,
>
> what version of OL do you use? Since 2.2 OL can compare certificates,
> which also means that you may have several values of the
> "userCertificate" attribute.
>
> Best regards, vadim tarassov
--
Diego de Felice

References:
- Multiple value for userCertificate
  - From: Diego de Felice <diego.defelice@gmail.com>

Prev by Date: 2.3.18 syncrepl problem
Next by Date: Re: make errors with 2.3.17.
Index(es):
- Chronological
- Thread