The field from the client certificate to use as the client username. Changes to this attribute are synchronized to HA mates and replication sites via config-sync. The default value is "common-name". The allowed values and their meaning are:
"certificate-thumbprint" - The username is computed as the SHA-1 hash over the entire DER-encoded contents of the client certificate.
"common-name" - The username is extracted from the certificate's first instance of the Common Name attribute in the Subject DN.
"common-name-last" - The username is extracted from the certificate's last instance of the Common Name attribute in the Subject DN.
"subject-alternate-name-msupn" - The username is extracted from the certificate's Other Name type of the Subject Alternative Name and must have the msUPN signature.
"uid" - The username is extracted from the certificate's first instance of the User Identifier attribute in the Subject DN.
"uid-last" - The username is extracted from the certificate's last instance of the User Identifier attribute in the Subject DN.
The field from the client certificate to use as the client username. Changes to this attribute are synchronized to HA mates and replication sites via config-sync. The default value is
"common-name". The allowed values and their meaning are:Available since 2.6.