Hi everybody,
i'm trying to get rid of the User Data Section in Basic CSR, because i think i don't need that information.
I think i only need email and names for Certificates, other user-attributes are stored in external databases and LDAP.
have a look into the etc/servers files...
for example: pub.conf there you may edit the necessary fields for each request type look at those attributes:
this is example of IE section of config file, so if u don't need or like to have other names for it and so on - change those attributes
DN_TYPE_IE_SUBJECTALTNAMES "email" "IP" "DNS" "DNS"
DN_TYPE_IE_SUBJECTALTNAME_1 "alternative email" DN_TYPE_IE_SUBJECTALTNAME_1_MINIMUM_LENGTH 3 DN_TYPE_IE_SUBJECTALTNAME_1_REQUIRED "NO"
DN_TYPE_IE_SUBJECTALTNAME_2 "IP address" DN_TYPE_IE_SUBJECTALTNAME_2_MINIMUM_LENGTH 7 DN_TYPE_IE_SUBJECTALTNAME_2_REQUIRED "NO"
DN_TYPE_IE_SUBJECTALTNAME_3 "DNS name" DN_TYPE_IE_SUBJECTALTNAME_3_MINIMUM_LENGTH 9 DN_TYPE_IE_SUBJECTALTNAME_3_REQUIRED "NO"
DN_TYPE_IE_SUBJECTALTNAME_4 "DNS name" DN_TYPE_IE_SUBJECTALTNAME_4_MINIMUM_LENGTH 9 DN_TYPE_IE_SUBJECTALTNAME_4_REQUIRED "NO"
and look for:
ADDITIONAL_REQUEST_ATTRIBUTES "requestercn" "email" "department" "telephone"
ADDITIONAL_ATTRIBUTES_DISPLAY_VALUE "Name (first and Last name)" "Email" "Department" "Telephone"
ADDITIONAL_REQUEST_ATTRIBUTES_STRING_TYPE "LATIN1_LETTERS" "EMAIL" "LATIN1_LETTERS" "LATIN1_LETTERS"
will define the additional fields you can just edit this however u like ;)
but this should be mentioned in our fine manual too i think...
greetings dalini
------------------------------------------------------- This SF.Net email is sponsored by: IntelliVIEW -- Interactive Reporting Tool for open source databases. Create drag-&-drop reports. Save time by over 75%! Publish reports on the web. Export to DOC, XLS, RTF, etc. Download a FREE copy at http://www.intelliview.com/go/osdn_nl _______________________________________________ Openca-Users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/openca-users
