Apple Federal Smart Card Package User Manual
Page 17
FSCP Installation and Setup Guide
17
Searching Using Certificate Data
This example searches for the user record using two search values from the certificate data
on the Common Access Card.
<array>
<dict>
<key>values</key>
<array>
<dict>
<key>type</key>
<string>CertificateData</string>
<key>certSelect</key>
<string>1</string>
<key>tag</key>
<string>NT Principal Name</string>
<key>value</key>
<string>placeholder</string>
</dict>
<dict>
<key>type</key>
<string>CertificateData</string>
<key>certSelect</key>
<string>1</string>
<key>tag</key>
<string>Organizational Unit:0</string>
<key>value</key>
<string>placeholder</string>
</dict>
<key>formatString</key>
<string>$1.$2.mil</string>
<key>userLookupKey</key>
<string>dsAttrTypeNative:CertInfo</string>
</dict>
</array>
Both search items specify using the signing certification. The first search item looks up the
NT Principal Name (for example, “The_Name”) while the second search item looks up an
Organizational Unit, which is “USN”.
The
formatString
combines these two elements separated by a period. The resulting
string is “The_Name.USN.mil”. The
userLookupKey
specifies searching for this value in a
directory key named “CertInfo.”
Sphinx Page 17 Tuesday, January 14, 2003 12:53 PM