UidPwdDirAuth Plug-in Module24 Netscape Certificate Management System Plug-Ins Guide • March 2002m If the end user has a valid entry in the directory, the server retrieves all theinformation required to construct the subject name for the user’s certificate.If, for some reason, the directory to which the server binds for authenticatingthe user ID and password is unavailable, the server returns an LDAP errorcode and writes it to the log. A sample log entry with an LDAP error code isshown below:28/Jun/1999:18:40:25 -0700] conn=0 op=7 RESULT err=32 tag=101nentries=0 etime=0]3. Next, the server subjects the certificate request to policy processing. For details,see Chapter 18, “Setting Up Policies” of CMS Installation and Setup Guide.m If the request fails any of the configured policies, the server rejects therequest, logs an error message, and sends a rejection notification to the endentity.m If the request passes all the configured policies, the server issues the enduser a certificate.The end user gets the certificate, which, if the server is configured to do so,is delivered to the email address specified in the request or in the directory.For information on configuring a Certificate Manager or RegistrationManager to send automated notifications, see section “Notifications ofCertificate Issuance to End Entities” in Chapter 16, “Setting Up AutomatedNotifications” of CMS Installation and Setup Guide.Configuration Parameters of UidPwdDirAuthIn the configuration file, the UidPwdDirAuth module is identified asauths.impl.UidPwdDirAuth.class=com.netscape.cms.authentication.UidPwdDirAuthentication.In the CMS window, the module is identified as UidPwdDirAuth. Figure 1-4 showshow configurable parameters of the module are displayed in the CMS window.