www.cendio.com
Bug 4872 - tl-ldap-certalias extracts all certificates from a user object
: tl-ldap-certalias extracts all certificates from a user object
Status: NEW
: ThinLinc
Misc
: 4.1.0
: PC Unknown
: P2 Normal
: LowPrio
Assigned To:
:
:
:
:
  Show dependency treegraph
 
Reported: 2013-10-24 16:19 by
Modified: 2013-10-29 10:20 (History)
Acceptance Criteria:


Attachments


Note

You need to log in before you can comment on or make changes to this bug.


Description From cendio 2013-10-24 16:19:48
The sole purpose for tl-ldap-certalias is to extract certificate from user
object and populate authorized_keys for use as public key auth.
The problem is that certificates for a user object probably includes several
certificates which only on is intended for authentication in the
infrastructure.

One way to overcome this is to implement a certificate filter just like we have
done on the client side which i configurable on the thinlinc server.

See client certificate filter documentation for more information:

http://www.cendio.com/resources/docs/tag/ch07s04.html#smart_card_certificate_filter_settings_dialog