userSMIMECertificate

PKCS#7 SignedData, where the content signed is ignored by consumers of userSMIMECertificate values. PKCS#7 is described in RFC 2315 . A value holds the entire certificate chain and a smimeCapabilities field as described in RFC 2633 . This attribute is preferred over userCertificate for S/MIME applications. Values should have a data contentType and omit the content field. Request and transfer values using the binary option for the attribute description, userSMIMECertificate;binary.

Origin

RFC 2798

Usage

userApplications

Description

PKCS#7 SignedData used to support S/MIME

OID

2.16.840.1.113730.3.1.40

Equality Matching Rule

octetStringMatch

Single Value

false: multiple values allowed

Names

userSMIMECertificate

Ordering Matching Rule

octetStringOrderingMatch

User Modification Allowed

true

Used By

inetOrgPerson

Schema File

00-core.ldif

Syntax

Binary