Security Domain Database - dogtagpki/pki GitHub Wiki
This page describe the structure of security domain database in LDAP.
ou=Security Domain,<CA base DN> + cn=<subsystem type>List + cn=<hostname>:<port> + ou=sessions + cn=<session ID>
dn: ou=Security Domain,dc=ca,dc=pki,dc=example,dc=com objectClass: top objectClass: organizationalUnit ou: Security Domain name: EXAMPLE
dn: cn=CAList,ou=Security Domain,dc=ca,dc=pki,dc=example,dc=com objectClass: top objectClass: pkiSecurityGroup cn: CAList
dn: cn=pki.example.com:8443,cn=CAList,ou=Security Domain,dc=ca,dc=pki,dc=example,dc=com objectClass: top objectClass: pkiSubsystem cn: pki.example.com:844 Host: pki.example.com UnSecurePort: 8080 SecurePort: 8443 SecureEEClientAuthPort: 8443 SecureAgentPort: 8443 SecureAdminPort: 8443 Clone: FALSE SubsystemName: CA pki.example.com 8443 DomainManager: FALSE
dn: ou=sessions,ou=Security Domain,dc=ca,dc=pki,dc=example,dc=com objectClass: top objectClass: organizationalUnit ou: sessions
dn: cn=<session ID>,ou=sessions,ou=Security Domain,dc=ca,dc=pki,dc=example,dc=com objectClass: top objectClass: securityDomainSessionEntry cn: <session ID> host: <IP address> uid: <uid> cmsUserGroup: <group> dateOfCreate: <timestamp>