Defines a SiteMinder certification mapping object.
Syntax
typedef struct Sm_PolicyApi_CertMap_s { int iStructId; char pszOid[BFSIZE]; char pszDesc[BFSIZE]; char pszUserDirOid[BFSIZE]; /* Required */ char pszIssuerDN[BFSIZE]; /* Required */ char pszCaDN[BFSIZE]; char pszMapAttr[BFSIZE]; Sm_PolicyApi_CertMapFlags_t nFlags; /* Required */ Sm_PolicyApi_CertMapAttrType_t nAttrType; Sm_PolicyApi_DirType_t nDirType; /* Required */ struct Sm_PolicyApi_CertMap_s *next; } Sm_PolicyApi_CertMap_t;
Field |
Description |
---|---|
iStructId |
Certificate mapping data structure ID, defined in Sm_PolicyApi_Structs_t. |
pszOid |
The object identifier of the certificate mapping object. |
pszDesc |
Brief description of the certificate mapping object. |
pszUserDirOid |
Object identifier of the user directory. |
pszIssuerDN |
DN of the server certificate. |
pszCaDN |
DN of the issuing Certificate Authority. |
pszMapAttr |
You can perform single attribute mapping or custom mapping:
The format of the attribute is: %{<attribute name>} <attribute name> is the name of the attribute, matching a single attribute from the subject DN of a user's certificate to a single attribute stored in the user directory to verify the user's identity.
Using custom mapping expressions for complex multiple attribute mapping, you can specify multiple user attributes that should be extracted from a user DN to establish a certificate mapping. The syntax for a custom mapping expression is a parsing specification designed to enable full mapping flexibility. It indicates which information to take from the certificate and where it should be applied to in the user directory. The basic syntax is: UserAttribute=%{CertificateAttribute}, UserAttribute2=%{CertificateAttribute} |
nFlags |
Set one or more of these flags:
|
nAttrType |
This enumeration specifies how the X.509 client certificate maps to the user information in the authentication directory.
|
nDirType |
The type of directory used to authenticate users. One of these values:
|
next |
Pointer to the next registration scheme structure. |
Copyright © 2015 CA Technologies.
All rights reserved.
|
|