LDAP service

Access service for published certificates is supported by LDAP server containing ldap.id.ge directory.

ldap.id.ge directory includes the following information:

• Active published authentication certificates issued for identity (residence) card;
• Both active and non-active published certificates of qualified electronic signature issued for identity (residence) card;
• Active published authentication certificates issued to organization;
• Both active and non-active published certificates of qualified electronic stamp issued to organization.

Authentication certificates shall be deleted from ldap.id.ge directory, if they are suspended, annulled or expired.

Directory can be accessed from software supported by LDAP server.

LDAP Technical Description

Directory service supports LDAPv3. Access to the service is unrestricted, data are exchanged by means of SSL encryption and SSL client authentication is not required.

Detailed description of directory structure essential for data search is provided below.

LDAP Structure

Directory structure (for personal certificates)

c=GEO, o=Ministry of Justice of Georgia

ou=Civil Registry Agency

cn=GEO Authentication CA

cn=saxeli gvari 00000000000

cn: saxeli gvari 00000000000

o: citizen

uid: PNOGE-000000000000

userCertificate:

cn=GEO Signing CA

cn=saxeli gvari 00000000000

cn: saxeli gvari 00000000000

o: citizen

uid: PNOGE-00000000000

userCertificate:

Request content entered in cn or uid fields needs to be exact to enable relevant certificate search in the directory.

Directory structure (for organization certificates)

c=GEO, o=Ministry of Justice of Georgia

ou=Public Service Development Agency

cn=GEO ESeal CA

cn=organizacia 000000000

cn: organizacia 000000000

o: organizacia

uid: NTRGE-0000000000

userCertificate:

cn=GEO Organizational Authentication CA

cn=organizacia 000000000

cn: organizacia 000000000

o: organizacia

uid: NTRGE-0000000000

userCertificate: