CertificatePoliciesExt Plug-in Module
152
Netscape Certificate Management System Plug-Ins Guide • May 2002
CertificatePoliciesExt Rule
The policy rule named
CertificatePoliciesExt
is an instance of the
CertificatePoliciesExt
module. Certificate Management System automatically
creates this rule during installation. By default, the rule is configured as follows:
•
The rule is disabled; for the rule to be effective, it must be enabled and
configured appropriately.
•
The predicate field is left blank so that the extension gets added to all
certificates.
•
The extension is marked noncritical (to comply with the PKIX
recommendation).
•
Other fields are left blank for you to enter the appropriate information.
For details on individual parameters defined in the rule, see Table 4-5 on page 150.
You need to review this rule and make the changes appropriate for your PKI setup.
For instructions, see section “Step 2. Modify Existing Policy Rules” in Chapter 18,
“Setting Up Policies” of CMS Installation and Setup Guide. For instructions on
adding additional instances, see section “Step 4. Add New Policy Rules” in the
displayText
Specifies the textual statement to be included in certificates; this parameter
corresponds to the
explicitText
field of the user notice. If you want to embed a
textual statement (for example, your company’s legal notice) in certificates, then
add that statement here. The text you enter here will be displayed to a relying party
when the certificate is used or viewed.
Note that certain applications may not have the capability to display this text. Also,
embedding a policy statement in a certificate increases its size.
If you specify values for both
policyId
and
displayText
parameters and if the
application software cannot locate the notice text indicated by the
policyId
parameter, then it is supposed to display the embedded notice; otherwise, it’s
supposed to display the information specified by the
policyId
parameter. (This
feature is application specific and Certificate Management System has no control
over it.)
Permissible values: A string with up to 200 characters.
Example:
Example Corporation’s CPS incorp. by reference liab.
ltd. (c) 2002 Example Corporation
Table 4-5
Description of parameters defined in the CertificatePoliciesExt module (Continued)
Parameter
Description
Summary of Contents for Certificate Management System 6.01
Page 1: ...Plug Ins Guide Netscape Certificate Management System Version6 01 May 2002...
Page 10: ...10 Netscape Certificate Management System Plug Ins Guide May 2002...
Page 62: ...Enrollment Forms 62 Netscape Certificate Management System Plug Ins Guide May 2002...
Page 308: ...NTEventLog Plug in Module 308 Netscape Certificate Management System Plug Ins Guide May 2002...