ProxySG Content Policy Language Guide
148
user.x509.serialNumber=Tests the serial number of the x509 certificate used to authenticate the user against a certificate realm.
The user.x509.serialNumber= condition is primarily useful in constructing explicit certificate
revocation lists. Comparisons are case-insensitive.
Syntax
user.x509.serialNumber=serial_number
where serial_number is a string representation of the certificate’s serial number in HEX.
The string is always an even number of characters long, so if the number needs an odd number of
characters to represent in hex, there is a leading zero. This can be up to 160 bits.
Layer and Transaction Notes
•Use in <Proxy>, <Admin>, and <Exception> Layers.
• Applies to proxy transactions.
See Also
• Conditions: user.x509.issuer=, user.x509.subject=
•Properties: authenticate( ), authenticate.force( )