[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: Multiple value for userCertificate



Hi, I'm using OpenLDAP: slapd 2.2.26 (Sep 15 2005 15:18:56).

In core.schema I've something like this:

# Must be transferred using ;binary
# with certificateExactMatch rule (per X.509)
attributetype ( 2.5.4.36 NAME 'userCertificate'
        DESC 'RFC2256: X.509 user certificate, use ;binary'
        EQUALITY certificateExactMatch
        SYNTAX 1.3.6.1.4.1.1466.115.121.1.8 )

and this:

objectclass ( 2.5.6.21 NAME 'pkiUser'
	DESC 'RFC2587: a PKI user'
	SUP top AUXILIARY
	MAY userCertificate )

I hope to have not done some mess in the schema :-)

On 17/01/06, vadim <vadim.tarassov@swissonline.ch> wrote:
> Hallo Diego,
>
> what version of OL do you use? Since 2.2 OL can compare certificates,
> which also means that you may have several values of the
> "userCertificate" attribute.
>
> Best regards, vadim tarassov
--
Diego de Felice