Directory Services 7.2.5

userSMIMECertificate

PKCS#7 SignedData, where the content signed is ignored by consumers of userSMIMECertificate values. PKCS#7 is described in RFC 2315 .

A value holds the entire certificate chain and a smimeCapabilities field as described in RFC 2633 . This attribute is preferred over userCertificate for S/MIME applications.

Values should have a data contentType and omit the content field.

Request and transfer values using the binary option for the attribute description, userSMIMECertificate;binary.

Single value

false: multiple values allowed

Origin

RFC 2798

Usage

userApplications

Description

PKCS#7 SignedData used to support S/MIME

Ordering matching rule

octetStringOrderingMatch

OID

2.16.840.1.113730.3.1.40

User modification allowed

true

Schema file

00-core.ldif

Names

userSMIMECertificate

Used by

inetOrgPerson

Syntax

Binary

Equality matching rule

octetStringMatch