Previous Topic: How a Directory Connection Is Established

Next Topic: Configure Distributed User Authentication

Bypass the Entry Check

Usually, during SSL authentication, the DSA verifies that the entry exists. To bypass this entry check, add the following command to the DSA's configuration:

set ssl-auth-bypass-entry-check = true;

When this is set, while authenticating the client, the DSA does not check that an entry with a distinguished name matching the subject field in the certificate of the client exists in the directory.


Copyright © 2009 CA. All rights reserved. Email CA about this topic