The maps client certificates to user entries by looking for the MD5 or SHA1 fingerprint in a specified attribute of user entries. ds-cfg-fingerprint-certificate-mapper ds-cfg-certificate-mapper org.opends.server.extensions.FingerprintCertificateMapper Specifies the attribute in which to look for the fingerprint. Values of the fingerprint attribute should exactly match the MD5 or SHA1 representation of the certificate fingerprint. ds-cfg-fingerprint-attribute Specifies the name of the digest algorithm to compute the fingerprint of client certificates. Use the MD5 digest algorithm to compute certificate fingerprints. Use the SHA-1 digest algorithm to compute certificate fingerprints. ds-cfg-fingerprint-algorithm Specifies the set of base DNs below which to search for users. The base DNs are used when performing searches to map the client certificates to a user entry. The server performs the search in all public naming contexts. ds-cfg-user-base-dn