Class ExtensionX509IdentityProvider

X509 Identity Provider Extension Schema

Inheritance
object
ExtensionX509IdentityProvider
Inherited Members
Namespace: Oci.IdentitydomainsService.Models
Assembly: OCI.DotNetSDK.Identitydomains.dll
Syntax
public class ExtensionX509IdentityProvider

Properties

CertMatchAttribute

Declaration
[Required(ErrorMessage = "CertMatchAttribute is required.")]
[JsonProperty(PropertyName = "certMatchAttribute")]
public string CertMatchAttribute { get; set; }
Property Value
Type Description
string

X509 Certificate Matching Attribute
Added In: 2010242156
SCIM++ Properties:

  • caseExact: false
  • idcsSearchable: false
  • multiValued: false
  • mutability: readWrite
  • required: true
  • returned: default
  • type: string
  • uniqueness: none
Remarks

Required

CrlCheckOnOCSPFailureEnabled

Declaration
[JsonProperty(PropertyName = "crlCheckOnOCSPFailureEnabled")]
public bool? CrlCheckOnOCSPFailureEnabled { get; set; }
Property Value
Type Description
bool?

Fallback on CRL Validation if OCSP fails.
Added In: 2010242156
SCIM++ Properties:

  • caseExact: false
  • idcsSearchable: false
  • multiValued: false
  • mutability: readWrite
  • required: false
  • returned: default
  • type: boolean
  • uniqueness: none

CrlEnabled

Declaration
[JsonProperty(PropertyName = "crlEnabled")]
public bool? CrlEnabled { get; set; }
Property Value
Type Description
bool?

Set to true to enable CRL Validation
Added In: 2010242156
SCIM++ Properties:

  • caseExact: false
  • idcsSearchable: false
  • multiValued: false
  • mutability: readWrite
  • required: false
  • returned: default
  • type: boolean
  • uniqueness: none

CrlLocation

Declaration
[JsonProperty(PropertyName = "crlLocation")]
public string CrlLocation { get; set; }
Property Value
Type Description
string

CRL Location URL
Added In: 2010242156
SCIM++ Properties:

  • caseExact: false
  • idcsSearchable: false
  • multiValued: false
  • mutability: readWrite
  • required: false
  • returned: default
  • type: string
  • uniqueness: none

CrlReloadDuration

Declaration
[JsonProperty(PropertyName = "crlReloadDuration")]
public int? CrlReloadDuration { get; set; }
Property Value
Type Description
int?

Fetch the CRL contents every X minutes
Added In: 2010242156
SCIM++ Properties:

  • idcsSearchable: false
  • multiValued: false
  • mutability: readWrite
  • required: false
  • returned: default
  • type: integer
  • uniqueness: none

EkuValidationEnabled

Declaration
[JsonProperty(PropertyName = "ekuValidationEnabled")]
public bool? EkuValidationEnabled { get; set; }
Property Value
Type Description
bool?

Set to true to enable EKU Validation
Added In: 2304270343
SCIM++ Properties:

  • caseExact: false
  • idcsSearchable: false
  • multiValued: false
  • mutability: readWrite
  • required: false
  • returned: default
  • type: boolean
  • uniqueness: none

EkuValues

Declaration
[JsonProperty(PropertyName = "ekuValues", ItemConverterType = typeof(ResponseEnumConverter))]
public List<ExtensionX509IdentityProvider.EkuValuesEnum> EkuValues { get; set; }
Property Value
Type Description
List<ExtensionX509IdentityProvider.EkuValuesEnum>

List of EKU which needs to be validated
Added In: 2304270343
SCIM++ Properties:

  • caseExact: false
  • idcsSearchable: false
  • multiValued: true
  • mutability: readWrite
  • required: false
  • returned: default
  • type: string
  • uniqueness: none

OcspAllowUnknownResponseStatus

Declaration
[JsonProperty(PropertyName = "ocspAllowUnknownResponseStatus")]
public bool? OcspAllowUnknownResponseStatus { get; set; }
Property Value
Type Description
bool?

Allow access if OCSP response is UNKNOWN or OCSP Responder does not respond within the timeout duration
Added In: 2010242156
SCIM++ Properties:

  • caseExact: false
  • idcsSearchable: false
  • multiValued: false
  • mutability: readWrite
  • required: false
  • returned: default
  • type: boolean
  • uniqueness: none

OcspEnableSignedResponse

Declaration
[JsonProperty(PropertyName = "ocspEnableSignedResponse")]
public bool? OcspEnableSignedResponse { get; set; }
Property Value
Type Description
bool?

Describes if the OCSP response is signed
Added In: 2010242156
SCIM++ Properties:

  • caseExact: false
  • idcsSearchable: false
  • multiValued: false
  • mutability: readWrite
  • required: false
  • returned: default
  • type: boolean
  • uniqueness: none

OcspEnabled

Declaration
[JsonProperty(PropertyName = "ocspEnabled")]
public bool? OcspEnabled { get; set; }
Property Value
Type Description
bool?

Set to true to enable OCSP Validation
Added In: 2010242156
SCIM++ Properties:

  • caseExact: false
  • idcsSearchable: false
  • multiValued: false
  • mutability: readWrite
  • required: false
  • returned: default
  • type: boolean
  • uniqueness: none

OcspResponderURL

Declaration
[JsonProperty(PropertyName = "ocspResponderURL")]
public string OcspResponderURL { get; set; }
Property Value
Type Description
string

This property specifies OCSP Responder URL.
Added In: 2010242156
SCIM++ Properties:

  • caseExact: false
  • idcsSearchable: false
  • multiValued: false
  • mutability: readWrite
  • required: false
  • returned: default
  • type: string
  • uniqueness: none

OcspRevalidateTime

Declaration
[JsonProperty(PropertyName = "ocspRevalidateTime")]
public int? OcspRevalidateTime { get; set; }
Property Value
Type Description
int?

Revalidate OCSP status for user after X hours
Added In: 2010242156
SCIM++ Properties:

  • idcsMaxValue: 24
  • idcsMinValue: 0
  • idcsSearchable: false
  • multiValued: false
  • mutability: readWrite
  • required: false
  • returned: default
  • type: integer
  • uniqueness: none

OcspServerName

Declaration
[JsonProperty(PropertyName = "ocspServerName")]
public string OcspServerName { get; set; }
Property Value
Type Description
string

This property specifies the OCSP Server alias name
Added In: 2010242156
SCIM++ Properties:

  • caseExact: false
  • idcsSearchable: false
  • multiValued: false
  • mutability: readWrite
  • required: false
  • returned: default
  • type: string
  • uniqueness: none

OcspTrustCertChain

Declaration
[JsonProperty(PropertyName = "ocspTrustCertChain")]
public List<string> OcspTrustCertChain { get; set; }
Property Value
Type Description
List<string>

OCSP Trusted Certificate Chain
Added In: 2010242156
SCIM++ Properties:

  • caseExact: false
  • idcsSearchable: false
  • multiValued: true
  • mutability: readWrite
  • required: false
  • returned: default
  • type: string
  • uniqueness: none

OtherCertMatchAttribute

Declaration
[JsonProperty(PropertyName = "otherCertMatchAttribute")]
public string OtherCertMatchAttribute { get; set; }
Property Value
Type Description
string

Check for specific conditions of other certificate attributes
Added In: 2010242156
SCIM++ Properties:

  • caseExact: false
  • idcsSearchable: false
  • multiValued: false
  • mutability: readWrite
  • required: false
  • returned: default
  • type: string
  • uniqueness: none

SigningCertificateChain

Declaration
[Required(ErrorMessage = "SigningCertificateChain is required.")]
[JsonProperty(PropertyName = "signingCertificateChain")]
public List<string> SigningCertificateChain { get; set; }
Property Value
Type Description
List<string>

Certificate alias list to create a chain for the incoming client certificate
Added In: 2010242156
SCIM++ Properties:

  • caseExact: false
  • idcsSearchable: false
  • multiValued: true
  • mutability: readWrite
  • required: true
  • returned: default
  • type: string
  • uniqueness: none
Remarks

Required

UserMatchAttribute

Declaration
[Required(ErrorMessage = "UserMatchAttribute is required.")]
[JsonProperty(PropertyName = "userMatchAttribute")]
public string UserMatchAttribute { get; set; }
Property Value
Type Description
string

This property specifies the userstore attribute value that must match the incoming certificate attribute.
Added In: 2010242156
SCIM++ Properties:

  • caseExact: false
  • idcsSearchable: false
  • multiValued: false
  • mutability: readWrite
  • required: true
  • returned: default
  • type: string
  • uniqueness: none
Remarks

Required