Older versionPhenixID server 2.2 Valvesx509OneTouchCertificateIssuerValve


Valve for validating One Touch certificates.


Name Description Default value Mandatory Supports property expansion
cert_subject_dn Certificate subject in DN format Yes Yes
cert_subject_key Certificate public key in PEM format Yes Yes
cert_serial_number Serial number of the certificate Yes Yes
cert_ocsp_url Certificate OCSP URL Yes Yes
cert_not_before Certificate start date/time Yes Yes
cert_not_after Certificate expiry date/time Yes Yes
cert_key_usage Certificate key usage string (see X509 Common documentation) No Yes
cert_ext_key_usage Certificate extended key usage (see X509 Common documentation) No Yes
dest Name of item property receiving the certificate Yes No
ca_ref Configuration ID of CA to use, to issue the certificate (internal) Yes No