|
|
|
Sometimes certificates for individuals may be slightly different. For example, some users may have two employee, while others have a single number. In these cases, you may want to map to the second of the numbers when a second attribute exists. You can do so using the following notation:
%{attribute_name2/attribute_name}
Using the example from above, you could enter %{EN2/EN} as a custom mapping to indicate that the second number in the Subject DN should be used if it exists, otherwise, the first occurrence of the Employee attribute should be used.
This notation can also be used to specify two different attributes that are acceptable for a certificate mapping. For example, to indicate that the EN should be used, but a CN may be used if the EN does not exist, you could enter %{EN/CN}.
| Copyright © 2011 CA. All rights reserved. | Email CA Technologies about this topic |