Hello,
Thank you for information. I can use this options (OCSP URL, trust cert
location) once I make SSSD derive public keys from user certificate which is a
problem that I can not solve, so far.
The default mapping of the user certificate is from userCertificate;binary LDAP
attribute to SSSD
On Tue, Mar 03, 2020 at 04:38:16PM -, Hristina Marosevic wrote:
> Hello,
>
> Thank you for information. I can use this options (OCSP URL, trust cert
> location) once I make SSSD derive public keys from user certificate which is
> a problem that I can not solve, so far.
> The default
Hello,
I forgot to mention the LDAP implementation I am using - it is OUD (Oracle
Unified Directory). Object class "strongAuthenticationUser" was added to the
users for PKI based authentication. The mandatory attribute od this object
class is "userCertificate" or "userCertificate;binary" in
