Hello Oliver!
Thanks for response!
But i have no success ;(
09.10.2017 23:27, Oliver Welter пишет:
1) Can I fill "[% cert_info.requestor_email %]" and "[% requestor %]"
(and other) variables from LDAP?
Now "cert_info.requestor_email" is empty and requestor = "Unknown".
I change "to:" string in "default:" section of smtp.yaml to "[%
cert_subject_parts.email %]" and users start receiving emails, but
first line of this emails: "Dear unknown," ;(
It is possible to configure this: the user enters only the name of
the device for which he needs a certificate, and his username, full
name and email is taken from LDAP?
Yes this is possible with the generic connetor system.
You need to setup a connector similar to your LDAP Auth connector that
delivers the requested information. Then add a new activity to your
workflow using the class
OpenXPKI::Server::Workflow::Activity::Tools::Connector::GetValue
This can be used to load information from the Connector into the
workflow context. You can then modifiy the "notify" activities to
access this information and map it into the templates or even use the
given variable names.
I can't find any information about "setup a connector" for workflow ;(
Can you give me any example?
2) How can I set up automatic sending of emails to users who have
certificates that expire within two weeks?
I upgraded my system to 1.18.1 and see new "cert_expiry" notification
settings in smtp.yaml, but I can't find any information about its
usage ;(
Have a look at the notify_expiry which is provided with the sample
config. You can call this e.g. from cron using the "openxpkicmd"
command line tool.
I started workflow, but get certificates in already renewed list ;(
My users can have many certificates with same CN, but different UID.
For example: Certificate with subject
"UID=s60_may+CN=krasnikov,DC=npk,DC=ru" be expired soon, but
"expiry_search_renewed" return it in "Certificates already renewed" list.
Other certificate "UID=Krasnikov+CN=krasnikov,DC=npk,DC=ru" exists and
valid, but this is certificate for other device.
I use default "search_renewed:" action definition with
"_map_cert_subject: "[% USE Certificate %][% Certificate.body(
context.cert_identifier, 'subject') %]""
How to modify it to match full certificate subject ?
OpenXPKI::Server::Workflow::Activity::Tools::SearchCertificates manual
does not contains any description of "_map_cert_subject" parameter ;(
Stace
------------------------------------------------------------------------------
Check out the vibrant tech community on one of the world's most
engaging tech sites, Slashdot.org! http://sdm.link/slashdot
_______________________________________________
OpenXPKI-users mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/openxpki-users
