LdapCaSimpleMap Plug-in Module
250
Netscape Certificate Management System Plug-Ins Guide • May 2002
After you take a look at the default mapper modules, if you determine that they do
not meet your requirements entirely, you can develop a custom mapper module by
implementing the following Java interface:
com.netscape.cms.ldappublish.ILdapMapper
For more information about this interface, check the CMS software development
kit (SDK) installed at this location:
<server_root>/cms_sdk/cms_jdk
Be sure to take a look at the samples available at this location:
<server_root>/cms_sdk/cms_jdk/samples/mappers
For instructions on how to configure a Certificate Manager to use a mapper
module, see section “Configuring a Certificate Manager to Publish Certificates and
CRLs” in Chapter 19, “Setting Up LDAP Publishing” of CMS Installation and Setup
Guide.
LdapCaSimpleMap Plug-in Module
The
LdapCaSimpleMap
plug-in module implements the CA certificate mapper. This
mapper enables you to configure a Certificate Manager to automatically create an
entry for the CA in an LDAP directory and then map the CA’s certificate to the
directory entry by formulating the entry’s DN from components specified in the
certificate request, certificate subject name, certificate extension, and attribute
variable assertion (AVA) constants. For more information on AVAs, check the
directory documentation.
The CA certificate mapper allows you to specify whether to create an entry for the
CA or to just map the certificate to an existing entry, or to do both. For example,
you can choose to manually create an entry for the CA in the directory and then
configure the CA certificate mapper to just locate the entry by using attributes from
the issuer name in the CA’s signing certificate and AVA constants.
LdapSubjAttrMap
Maps a certificate to a directory entry by searching for the entry that contains the
LDAP attribute named
certSubjNameAttr
whose value exactly matches the
certificate subject name. For details, see “LdapSubjAttrMap Plug-in Module” on
page 263.
Table 5-1
Default mapper plug-in modules for mapping certificates and CRLs (Continued)
Plug-in module name
Function
Summary of Contents for Certificate Management System 6.01
Page 1: ...Plug Ins Guide Netscape Certificate Management System Version6 01 May 2002...
Page 10: ...10 Netscape Certificate Management System Plug Ins Guide May 2002...
Page 62: ...Enrollment Forms 62 Netscape Certificate Management System Plug Ins Guide May 2002...
Page 308: ...NTEventLog Plug in Module 308 Netscape Certificate Management System Plug Ins Guide May 2002...