[Openca-Users] serialNumber in DN

Mon, 24 Nov 2003 04:48:49 -0800

Title: Message
Hi,
 
I'd like to issue certificates to users uniquelly identified by serialNumber in DN.
Openca (as I tested) puts serial of the issued certificate into the serialNumber attribute.
Problem is, when I use openca way to have unique DNs for users and reissue a cert for any user,
new identity of the existing user will occur in my LDAP tree.
This is not possible for me, so I'd like to fill this attribute with an employe number
which is unique and could represent identity.
 
Second problem is, openca constructs DN this way:
serialNumber=anyvalue,cn=John Doe, ou=certreq group,basedn
 
Is there any possibility to have DN of following syntax?
serialNumber=anyvalue+cn=John Doe, ou=certreq group,basedn
 
If I understand, RFC2253 allow this syntax, but not openca.
 
 
Is there any solution for my problems?
 
 
Thanks,
 
Zdenek Hatas
 
 

Reply via email to