X.509 Client Cert Template
Use this table when configuring an authentication scheme based on the scheme type X.509 Client Certificate. The structure fields referenced in the table are in Sm_PolicyApi_Scheme_t.
casso1283
Use this table when configuring an authentication scheme based on the scheme type X.509 Client Certificate. The structure fields referenced in the table are in Sm_PolicyApi_Scheme_t.
Information Type | Value Assignment and Meaning |
Scheme type | nType =Sm_Api_SchemeType_X509ClientCertThe scheme type X.509 Client Certificate. |
Description | pszDesc =description The description of the authentication scheme. |
Protection level | nLevel =value A value of 1 through 1000. The higher the number, the greater degree of protection provided by the scheme. Default is 5. |
Library | pszLib ="smauthcert"The default library for this scheme type. |
Parameter | pszParam =param A string containing the domain or IP address of the server responsible for establishing the SSL connection and the name and path of the SSL Credentials Collector (SCC). The server redirects a user's X.509 certificate over an SSL connection. Format: https:// server /SCC ?certThe following example uses the default SCC value: https://my.server.com/siteminderagent/cert/smgetcred.scc?cert |
Shared secret | pszSecret =""Set to an empty string. Not applicable to this scheme. |
Is template? | bIsTemplate =0Set to false (0) to indicate that the scheme is not a template. Any other value is ignored. |
Is used by administrator? | bIsUsedbyAdmin =0Set to false (0)-scheme is not used to authenticate administrators. |
Save credentials? | bAllowSaveCreds =0Set to false (0) to indicate that user credentials won't be saved. |
Is RADIUS? | bIsRadius =0Set to false (0)-scheme is not used with RADIUS agents. |
Ignore password check? | bIgnorePwCheck =1Set to true (1)-ignore password checking. |