ProxySG Content Policy Language Guide

user.x509.serialNumber=

Tests the serial number of the x509 certificate used to authenticate the user against a certificate realm. The user.x509.serialNumber= condition is primarily useful in constructing explicit certificate revocation lists. Comparisons are case-insensitive.

Syntax

user.x509.serialNumber=serial_number

where serial_number is a string representation of the certificate’s serial number in HEX.

The string is always an even number of characters long, so if the number needs an odd number of characters to represent in hex, there is a leading zero. This can be up to 160 bits.

Layer and Transaction Notes

Use in <Proxy>, <Admin>, and <Exception> Layers.

Applies to proxy transactions.

See Also

Conditions: user.x509.issuer=, user.x509.subject=

Properties: authenticate( ), authenticate.force( )

148

Page 147 Page 149
Page 148
Image 148
Blue Coat Systems Proxy SG manual User.x509.serialNumber=
Page 147 Page 149
Top Page Image Contents