On Thu, Dec 28, 2017 at 02:56:00PM -0500, Greg Hudson wrote:
> On 12/28/2017 02:05 PM, Pallissard, Matthew wrote:
> > I'm having issues when trying to use set_string with pkinit_cert_match.
> > PKINIT does work when the SAN matches the user's principal explicitly. It
> > does not work when I t
On 12/28/2017 02:05 PM, Pallissard, Matthew wrote:
> I'm having issues when trying to use set_string with pkinit_cert_match.
> PKINIT does work when the SAN matches the user's principal explicitly. It
> does not work when I try to map it to a user where the principal does not
> match the SAN.
