it:ad:certificates:howto:find_certs_by_findbysubjectdistinguishedname

IT:AD:Certificates:HowTo:Find Certs By FindBySubjectDistinguishedName

Summary

Finding Certs by Name is much more practical (for deployment reasons) than finding certs by thumbnail.

But it can be confusing when you're sure you've installed the cert, but searching for it by name doesn't seem to work.

Process

That's maybe because when using FindBySubjectDistinguishedName you have to search with the full name, not just the CN 

  <parameter name="SAML Federation Signing Certificate Match Filter"
         description="Provide the SAML Federation SigningCertificate's 'findValue' (eg: 'CN=COMPANY.COMP.NZ'). Required in order to find in the MY Cert Store the Cert used to communicate with the SAML IdP (ie ESAA/LSI)."
       defaultValue="CN=COMPANY.COMP.NZ, OU=SomeDepartment, O=SomeCompany, L=Wellington, S=Wellington, C=NZ">
    <parameterEntry kind="XmlFile" scope="Web.config" match="/configuration/*[local-name()='Federation']/*[local-name()='SigningCertificate']/@findValue" />
  </parameter>

  • /home/skysigal/public_html/data/pages/it/ad/certificates/howto/find_certs_by_findbysubjectdistinguishedname.txt
  • Last modified: 2023/11/04 03:38
  • by 127.0.0.1