On 26 June 2011 22:39, Leo Richard Comerford <leocomerf...@gmail.com> wrote:
> Hello. > > CA? - viz. the cross-signing "spaghetti of doubt" and so on. If the > answer is 'no' - if DN (or DN alone) won't guarantee uniqueness under > those circumstances - is there some other field, or combination of > fields, which would? DN plus Issuer? SubjectAltName? > > While others offers you to become a CA itself and other external auth. solutions, I would like to advice to consider to use CN, O or OU fields. CN= is normally a human name "Brian Adams". (For client certificates it is not web-server DNS-name!) O= is an organisation. "My Mega Company Inc." for example. OU= is an organisation unit. "Accaount Department" for example. You may use combination of these parameters for you proposes. Andrey.
