OpenLDAP won't parse the certificate for you. Unless you define your own attributes, and populate them at certificate insertion with certificates fields, then no, you won't be able to just request your directory and retrieve certificate fields. Le 20 avr. 2011 13:47, "Leonardo" eng.leonardo.dourado@gmail.com a écrit :
Hello,
I am sorry if i didn't get to explain my problem, I gonna try again. I work for a Brazilian Government's company, We have a project to authenticate about 65.000 users on OpenLDAP using digital certificate. All users will have a Smartcard. I am storing the user certificate on the attribute userCertificate of OpenLDAP, but i don't need to read it like it was stored, i need to read some fields of the certificate stored like ASCII, is it possible?
Thanks for your help.
Leonardo dos Santos Dourado.
2011/4/20 Jose Ildefonso Camargo Tolosa ildefonso.camargo@gmail.com
Hi!
Well, you are pretty much answering the question yourself. You read the certificate field, just as any other field! userCertificate: just read its content!
Now, maybe we are not really understanding what your problem is, so, please, be a little more specific: what are you trying to do? and why isn't it working?
Ildefonso Camargo
On Tue, Apr 19, 2011 at 10:51 AM, Leonardo eng.leonardo.dourado@gmail.com wrote:
Would i like to know if it is possible to read a certificate field
directly
from openldap? This certificate is stored on openldap. It attribute on OpenLDAP is userCertificate.