Feature Request: Publish certificates to LDAP #35
Comments
|
Hello, could you please describe a usecase for this? How do you imagine receiving CSR-s in that case? |
|
The normal request process would apply, but it's useful so users can lookup certificates in Outlook for S/MIME etc. |
|
So you're saying you want to publish certificates issued to a particular user under the userCertificate attribute? |
|
Yes. So if someone authenticated using ldap or kerberos, we can find them in ldap and at time off issuance store the public key in ldap, overwriting usually anything that's there. |
|
This should be doable with one constraint - Certidude should not remove other certificates issued by some other CA. I have currently Estonian ID-card certificates attached to the user for example so issuing another certificate from Certidude should not break that. |
|
I have the exact same. My personal account has both an Estonian ID-card certificate and a internel ca signed cert. |
|
Maybe include some logic to replace only certificates issued by itself? |
If the user is authenticated via LDAP, it would be useful to publish the newly created certificate to the corresponding certificate attribute in Active Directory.
The text was updated successfully, but these errors were encountered: