CertificatePoliciesExt Plug-in Module
Chapter
4
Certificate Extension Plug-in Modules
151
critical
Specifies whether the extension should be marked critical or noncritical in
certificates specified by the
predicate
parameter. Check the box if you want the
server to mark the extension critical. Uncheck the box if you want the server to
mark the extension noncritical (default).
policyId
Specifies the OID assigned to the policy statement you want to include in the
extension. If you specify a valid OID, the server includes the OID in the extension.
The
policyId
, if specified, identifies by number a particular textual statement
prepared by your organization (which is specified by the parameter named
organizationName
, listed next in this table). For example, it might identify the
organization as
Example Corporation
and notice number
1.2.3.4.5.6.99
.
Typically, applications validating the certificate will have a notice file containing
the current set of notices for your company; these application will interpret the
number in the certificate by extracting the notice text that corresponds to the
number from the file and display it to the relying party.
Permissible values: A unique, valid OID specified in dot-separated numeric
component notation (see the example). Although you can invent your own OIDs
for the purposes of evaluating and testing this server, in a production environment,
you should comply with the ISO rules for defining OIDs and for registering
subtrees of IDs. See
Appendix B, “Object Identifiers”
for information on
allocating private OIDs.
Example:
2.16.840.1.113730.1.99
organizationName
Specifies the name of the organization that owns the OID or is the owner of the
policy statement referenced by the OID.
Permissible values: The name of a company or its organizational unit.
Example:
Example Corporation
cpsURI
Specifies the location where the Certification Practice Statement published by the
CA (that has issued the certificate) can be found.
Permissible values: An IA5String value. The PKIX standard recommends that the
pointer should be in the form of a URI.
Example:
http://testCA.example.com/CPS_statement
Table 4-5
Description of parameters defined in the CertificatePoliciesExt module (Continued)
Parameter
Description
Содержание Certificate Management System 6.0
Страница 1: ...Plug Ins Guide Netscape Certificate Management System Version6 0 March 2002...
Страница 10: ...10 Netscape Certificate Management System Plug Ins Guide March 2002...
Страница 62: ...Enrollment Forms 62 Netscape Certificate Management System Plug Ins Guide March 2002...
Страница 126: ...ValidityConstraints Plug in Module 126 Netscape Certificate Management System Plug Ins Guide March 2002...
Страница 266: ...LdapSubjAttrMap Plug in Module 266 Netscape Certificate Management System Plug Ins Guide March 2002...
Страница 308: ...NTEventLog Plug in Module 308 Netscape Certificate Management System Plug Ins Guide March 2002...
Страница 324: ...DNs in Certificate Management System 324 Netscape Certificate Management System Plug Ins Guide March 2002...
Страница 370: ...CA Certificates and Extension Interactions 370 Netscape Certificate Management System Plug Ins Guide March 2002...