[Date Prev][Date Next]
Re: Component Matching / certificateMatch
Component matching is considered experimental in OpenLDAP
Software. As indicated by ITS#4112 and -devel list
discussions, it needs work.
At 12:49 AM 2/15/2006, Kai Kramer wrote:
>is component matching already usable in a production environment? Does
>anyone really use it? ITS4112 seems to be a serious problem.
>What about certificate matching rules as an alternative? I managed to
>use certificateExactMatch to search for serial number and issuer. But
>I had no success with certificateMatch. Is it possible to search for a
>certain key usage?