I was wondering if it possible to have self-registration using the X.509 certificate on the ID card?
The certificate DN includes everything I need for registering a new user, i.e.
- First name
- Last name
- Identification number
Ideally, I would like to create a new user with these attributes, without a possibility to set any credentials, as only X.509 authentication would be used. Authorization, i.e. roles/groups, would of course need to be done separately.