Hi, A quick question. Does the SubjectName in a certificate really need point to an LDAP DN in a X500 Directory that a CA uses or do CAs manage the SubjectName DNs without actually using any sort of Directory? I want to know whether it is a general practice for CAs not to maintain any LDAP Directories when issuing certificates with DNs. If it does not use DNs from an LDAP directory, how does the CA maintain a hierarchy for the SubjectName DNs it issues?
If it is not done through a Directory, how does a CA maintain the list of certificates it issues to a particular Subject. Will it just be file system based storage? Thanks Sandeep