Chapter 3: Condition Reference

user.x509.issuer=

Tests the issuer of the x509 certificate used in authentication to certificate realms. The user.x509.issuer= condition is primarily useful in constructing explicit certificate revocation lists. This condition will only be true for users authenticated against a certificate realm.

Syntax

user.x509.issuer=issuer_DN

where issuer_DN is an RFC2253 LDAP DN, appropriately escaped. Comparisons are case-sensitive.

Layer and Transaction Notes

Use in <Proxy>, <Admin>, and <Exception> Layers.

Applies to proxy transactions.

See Also

Conditions: user.x509.serialNumber=, user.x509.subject=

Properties: authenticate( ), authenticate.force( )

147

Page 146 Page 148
Page 147
Image 147
Blue Coat Systems Proxy SG manual User.x509.issuer=
Page 146 Page 148
Top Page Image Contents