Usually, during SSL authentication, the DSA verifies that the entry exists. To bypass this entry check, add the following command to the DSA's configuration:
set ssl-auth-bypass-entry-check = true;
When this is set, while authenticating the client, the DSA does not check that an entry with a distinguished name matching the subject field in the certificate of the client exists in the directory.
Copyright © 2009 CA. All rights reserved. | Email CA about this topic |