Version: 2.0
Category: Process
Extended Category: Binary
Action Package: Standard Actions
Description
Get certificate information as session attributes.
|
Parameter |
Description |
Example |
|
Certificate Attribute |
The Session Attribute containing the certificate. |
userCertificate |
|
Attribute Value is URL |
If the Session Attribute above contains a URL to the certificate. (true/false) Default: false. |
false |
|
Extract Subject DN (true/false) |
If the attribute Subject DN should be extracted from the certificate. (true/false) Default: false. |
true |
|
Extract Individual Subject DN (true/false) |
Split the Subject DN into Session Attributes. (true/false) Default: false. |
false |
|
Extract Issuer DN (true/false) |
If the attribute Issuer DN should be extracted from the certificate. (true/false) Default: false. |
true |
|
Extract Individual Issuer DN (true/false) |
Split the Issuer DN into Session Attributes. (true/false) Default: false. |
false |
|
Extract Version (true/false) |
If the attribute Version should be extracted from the certificate. (true/false) Default: false. |
true |
|
Extract Serial Number (true/false) |
If the attribute Serial Number should be extracted from the certificate. (true/false) Default: false. |
true |
|
Extract Algorithm (true/false) |
If the attribute Algorithm should be extracted from the certificate. (true/false) Default: false. |
true |
|
Extract Not After (true/false) |
If the attribute Not After should be extracted from the certificate. (true/false) Default: false. |
true |
|
Extract Not Before (true/false) |
If the attribute Not Before should be extracted from the certificate. (true/false) Default: false. |
true |
|
Extensions |
Additional extension attributes to extract from the certificate, comma separated. Use the OID for the desired extension. E.g. 2.5.29.17 for subjectAltName. OID’s can be found at http://www.oid-info.com/get/2.5.29 . |
2.5.29.17 |
|
CRL Check (true/false) |
If a CRL distribution point is available in the certificate, make a verification and put the result in the Session Attribute CRL-STATUS. The result can be one of the following: VALID, REVOKED, NO CRL IN CERTIFICATE OR UNABLE TO GET CRL, UNKNOWN. (true/false) Default: false. |
true |
Use Cases
Example 1: Get certificate attributes
The session attribute certificateURL contains an URL to a website using a certificate. The action reads the certificate and creates the session attributes subjectDN, issuerDN, notAfter and notBefore.
|
Parameter |
Value |
|
Certificate Attribute |
certificateURL |
|
Attribute Value is URL |
true |
|
Extract Subject DN (true/false) |
true |
|
Extract Individual Subject DN (true/false) |
[BLANK] |
|
Extract Issuer DN (true/false) |
true |
|
Extract Individual Issuer DN (true/false) |
[BLANK] |
|
Extract Version (true/false) |
[BLANK] |
|
Extract Serial Number (true/false) |
[BLANK] |
|
Extract Algorithm (true/false) |
[BLANK] |
|
Extract Not After (true/false) |
true |
|
Extract Not Before (true/false) |
true |
|
Extensions |
[BLANK] |
|
CRL Check (true/false) |
[BLANK] |
DISCLAIMER
Information provided in this document is for your information only. PhenixID makes no explicit or implied claims to the validity of this information. Any trademarks referenced in this document are the property of their respective owners.The origin of this information may be internal or external to PhenixID. PhenixID makes all reasonable efforts to verify this information.
PhenixID - support.phenixid.se