How can I search for a user based on a Certificate in LDAP? | ansaurus

tags:

views:

167

answers:

2

Q:

How can I search for a user based on a Certificate in LDAP?

How do I search for a specific user object in LDAP that has an associated x509 certificate? Do I need to encode it in a certain way? It looks like the attribute is userCertificate based on looking at JXplorer.

Note: Accessing Active Directory through LDAP

A:

I suspect this may depend on your server providing LDAP and the syntax of the userCertificate attribute. It might be a string attribute then the contents would need to be base 64 encoded. Or else it might an octet syntax attribute.

By search 'using' a certificate, what do you mean? Connect over SSL/TLS with a cert, or find an object that has this specific certificate assigned to them? Not clear from your question.

geoffc 2009-07-01 13:49:07

Sorry about the ambiguity, but looking for this specifically: "find an object that has this specific certificate assigned to them"

Joshua 2009-07-01 14:29:25

Does your LDAP server store the Certificate Private Key, or a DN referencing a certificate object, or what? That seems to get you to the crux of the question.

geoffc 2009-07-01 15:16:19

A:

This is usually accomplished by associating the certificate DN with the LDAP entry.

Kevin 2009-07-02 16:56:27

but, how do I search for it with java? Do I submit the byte array using userCertificate={0} or do I encode it to a string somehow

Joshua 2009-07-02 19:57:44

Also, how are multiple certificates handled - so is the '=' the correct operator to use?

Joshua 2009-07-02 19:59:05

related questions

Java Time Zone is messed up

Eclipse on win64

Automate builds for Java RCP for deployment with JNLP

Why are professors or schools picking Java over C++ to teach to students?

Is there a real benefit of using J#?

Public/Popular Websites using JavaServer Faces

Why can't I use a try block around my super() call?

Accessing post variables using Java Servlets

Personal Linux web server

Is this really widening vs autoboxing?

How can I Java webstart multiple, dependent, native libraries?

Why can't I call toString() on a Java primitive?

How do I use Java to read from a file that is actively being written?

What code analysis tools do you use for your Java projects?

IllegalArgumentException or NullPointerException for a null parameter?

How do I configure and communicate with a serial port?

What is the best way to parse strings in Java

Getting started with a custom JXTA PeerGroup

Creating a custom button in Java

How to get started "writing" a code coverage tool?

Which Build-/Configuration Management Tool?

What is the difference between an int and an Integer in Java/C#?

What is the meaning of the type safety warning in certain Java generics casts?

How would you access Object properties from within an object method?

Converting CSV File to XML in Java