Usage of certificates with different DN

  • Thread starter Thread starter PinkY
  • Start date Start date
P

PinkY

hy!
situation is:
I have certificate published by foreign CA with different DN than DN
convention used in my AD domain.
I import that certificate to user account in my AD domain.
could that certificate be used for that user`s authorization when accesing
my AD domain?
some fields in certificate cn are similar with user`s cn in AD domain but
primary dn is different (social security number vs username)

tnx for reading :)
 
It could very well work. Keep in mind that when you import the certificate
you need to be able to export the private keys also to a .pfx file, if that
is possible, and also select option to include all certificates in
certificate path so that the computer you import the certificate/private key
into will trust the issuing CA. You can also export/import the issuing CA
certificate to a .cer file if that does not work. You do not want to select
the option for enable strong protection unless you want to prompted for a
password every time your private key is used. The computer that you import
the certificate into may need to be able to access the CRL [certificate
revocation list] as shown on the certificate details. --- Steve
 
Back
Top