The maps client certificates to user entries by looking for the MD5 or SHA1 fingerprint in a specified attribute of user entries. ds-cfg-fingerprint-certificate-mapper ds-cfg-certificate-mapper org.opends.server.extensions.FingerprintCertificateMapper Specifies the attribute in which to look for the fingerprint. Specifies the name or OID of the attribute whose value should exactly match the MD5 or SHA1 representation of the certificate fingerprint. ds-cfg-fingerprint-attribute Specifies the certificate fingerprint algorithm. Specifies the name of the digest algorithm that should be used to compute the fingerprint of client certificates. The value must be either "MD5" or "SHA1". Use the MD5 digest algorithm to compute certificate fingerprints. Use the SHA-1 digest algorithm to compute certificate fingerprints. ds-cfg-fingerprint-algorithm Specifies the set of base DNs below which to search for users. Specifies the base DN(s) that should be used when performing searches to map the client certificate to a user entry. If no values are provided, then the server will search below all public naming contexts. The server will perform the search in all public naming contexts. ds-cfg-user-base-dn