Chapter 3: Condition Reference

user.x509.subject=

Tests the subject field of the x509 certificate used to authenticate the user against a certificate realm. The user.x509.subject= condition is primarily useful in constructing explicit certificate revocation lists.

Syntax

user.x509.subject=subject

where subject is an RFC2253 LDAP DN, appropriately escaped.

Comparisons are case-sensitive.

Layer and Transaction Notes

Use in <Proxy>, <Admin>, and <Exception> Layers.

Applies to proxy transactions.

See Also

Conditions: user.x509.issuer=, user.x509.serialNumber=

Properties: authenticate( ), authenticate.force( )

149

Page 148 Page 150
Page 149
Image 149
Blue Coat Systems Proxy SG manual User.x509.subject=
Page 148 Page 150
Top Page Image Contents