userSMIMECertificate

PKCS#7 SignedData, where the content signed is ignored by consumers of userSMIMECertificate values. PKCS#7 is described in RFC 2315.

A value holds the entire certificate chain and a smimeCapabilities field as described in RFC 2633. This attribute is preferred over userCertificate for S/MIME applications.

Values should have a data contentType and omit the content field.

Request and transfer values using the binary option for the attribute description, userSMIMECertificate;binary.

Origin RFC 2798
Usage userApplications
Description PKCS#7 SignedData used to support S/MIME
OID 2.16.840.1.113730.3.1.40
Equality Matching Rule octetStringMatch
Single Value false: multiple values allowed
Names userSMIMECertificate
Ordering Matching Rule octetStringOrderingMatch
User Modification Allowed true
Used By inetOrgPerson
Schema File 00-core.ldif
Syntax Binary
Read a different version of :