Specifying Client's Username

KB Template

Summary

Specifying client's username.

How to set a client's username.

Configuring "userIDInCert"

Environment

Artix 5.5

All supported platforms

Question/Problem Description

There are various approaches to setting the client's username when using X.509 certificate authentication in conjunction with the file adapter. This article outlines these approaches.

Resolution

When using X.509 certificate authentication in conjunction with the file adapter, the property "com.iona.isp.adapter.file.param.userIDInCert" is used to specify which field is taken from the certificate’s subject Distinguished Name (DN) to be the user name. The default is the common name (CN).

This property can be set to any valid attribute type, where the attribute type identifes a field in a DN. For example:

String Representation	X.500 Attribute Type	Size of Data	Equivalent OID
C	countryName	2	2.5.4.6
O	organizationName	1...64	2.5.4.10
OU	organizationalUnitName	1...64	2.5.4.11
CN	commonName	1...64	2.5.4.3
ST	stateOrProvinceName	1...64	2.5.4.8
L	localityName	1...64	2.5.4.7
STREET	streetAddress
DC	domainComponent
UID	userid

#Security
#Artix
#Orbix
#configuration
#KnowledgeDocs

Sign up

Please log in or register:

Welcome to the Rocket Forum!

Please log in or register:

Scanning file for viruses.

This file cannot be downloaded