Hi!

 

I’m playing with mapping the DN of user certificates to (the DN of) LDAP users.

Maybe I’m missing something, but it seems openLDAP appends the certificate DN to the LDAP context for authentication.

That way the names can get really long, just as the olcAuthzRegexp will.

 

So can anybody give a real-life example which DN to use for the user certificates?

I mean certificate DN, LDAP user context and olcAuthzRegexp.

 

Kind regards,

Ulrich Windl