* Wietse Venema, 2019-05-18 :
> smtpd_mumble_restrictions =
> ...
> check_ccert_access {
> maptype:mapname, { search_order = cert_fingerprint,
> pubkey_fingerprint, subject, issuer }
> }
> ...
>
> Where subject (or issuer) will search maptype:mapname for a match
> with the client certificate's subject (or issuer) DN. The commas
> are optional.
As far as I can tell, support for issuer and subject CN lookup
was removed on 20200316. Is my understanding correct that support
for granting access based on these aspects of the client certificate
is no longer built-in? Should this use case be handled using an
external policy server?
Thomas.
