Managing CA-based certificates

Determining identifying information for client certificates

Define the identifying information that will be used for each remote client certificate. Typically, these are the values entered in the Distinguished Name (DN) fields when defining a certificate. This information will be needed in either of the following scenarios:

￿If you plan to direct remote users to request a remote certificate from the CA.

or

￿If you plan to request remote certificates from the CA on behalf of the end-user.

Use Table 3-1 as a template for defining this information.

Table 3-1. Client Distinguished Name (DN) information

Distinguished Name fields Setting

cn (common name)

ou (organizational unit)

Note: Soft-PK lists this field as "Department."

o (organization)

Note: Soft-PK lists this field as "Company."

l (locality)

Note: Soft-PK lists this field as "City."

st (state)

c (country)

3-12

Configuring Sidewinder for Soft-PK Clients

Page 42
Image 42
Secure Computing SafeNet, Sidewinder Version 5.1.0.02 manual Determining identifying information for client certificates