Add

RFC 4514, LDAP: String Representation of Distinguished Names
https://datatracker.ietf.org/doc/html/rfc4514

Update

If the criteriaType is X509Subject, the criteria is the X509 subject name of a Certificate of a user which is trusted by the Server. The format of the subject name criteria consists of a sequence of name value pairs using the syntax defined by Section 3 in RFC 4514. The Each name shall be one of entries in Table 8 and shall be followed by a '=' and then followed by the value. The names are case insensitive. The order shall be by the order shown in Table 8 with the lowest number first. Every value from Table 8 present in the Certificate shall be included in the criteria, others shall not be included. The value may be any printable character with reserved characters escaped as defined in RFC 4514. For example: CN=Smith\, John", /O=Company. Table 8 contains all subject name attributes where support is required by X509 and some commonly used attributes where support is optional. Additional fields may be added in the future. If one name is used multiple times in the certificate, the name is also repeated in the criteria. The entries with the same name are entered in the order they appear in the Certificate. All names listed in Table 8 that are included in the X509 subject name shall match the content of the criteria. Names not included in Table 8 are ignored.

Add

10 STREET Street Address