[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Microsoft and multi-valued RDNs

To: RWEISER@xxxxxxxxxxxx
Subject: Re: Microsoft and multi-valued RDNs
From: Michael Ströder <michael@xxxxxxxxxxxx>
Date: Thu, 24 Jul 2003 18:56:30 +0200
Cc: ietf-pkix@xxxxxxx
In-reply-to: <>
List-archive: <http://www.imc.org/ietf-pkix/mail-archive/>
List-id: <ietf-pkix.imc.org>
List-unsubscribe: <mailto:ietf-pkix-request@imc.org?body=unsubscribe>
References: <> <> <>
Sender: owner-ietf-pkix@xxxxxxxxxxxx
User-agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.4) Gecko/20030626

RWEISER@xxxxxxxxxxxx wrote:

DST has been useing a multivalued RDN in EndEntity certificates for a number
of PKIs and since 1999 when we started issuing certificates.  We only do
this for End Entities not servers.  Basically the certificate SubDN looks
like the following.

0.9.2342.19200300.100.1.1 = D01E473E000000F58FE3DDDC00000709,E =
rweiser@xxxxxxxxxxxx, CN = Russel F Weiser,O = TrustID personal
certificate,C = US

Maybe I'm missing something but this is not a multi-valued RDN.

An example in RFC2253 string notation would be:

cn=Michael Stroeder+serialNumber=12345, ...

Note the '+'.

Ciao, Michael.

Follow-Ups:
- Re: Microsoft and multi-valued RDNs
  - From: RWEISER
- Re: Microsoft and multi-valued RDNs
  - From: RWEISER

References:
- draft minutes
  - From: Stephen Kent
- Microsoft and multi-valued RDNs (was: draft minutes)
  - From: Michael Ströder
- Re: Microsoft and multi-valued RDNs (was: draft minutes)
  - From: RWEISER

Prev by Date: Re: Microsoft and multi-valued RDNs (was: draft minutes)
Next by Date: Re: Microsoft and multi-valued RDNs
Previous by thread: Re: Microsoft and multi-valued RDNs (was: draft minutes)
Next by thread: Re: Microsoft and multi-valued RDNs
Index(es):
- Date
- Thread