Creating a certificate filter policy association
To create a certificate filter policy association, you must be connected to the Enterprise Identity Mapping (EIM) domain in which you want to work and you must have EIM access control as either a Registry administrator or EIM administrator.
A policy association describes a relationship between a source set of multiple user identities and a single target user identity in a specified target user registry. Policy associations use EIM mapping policy support to create many-to-one mappings between user identities without involving an EIM identifier.
The certificate filter controls how a certificate filter policy association maps one source set of user identities, in this case digital certificates, to a specific target user identity. Therefore, the certificate filter that you want to use must exist before you can create a certificate filter policy association.
Before you can create a certificate filter policy association, you must first create a certificate filter to use as the basis of the policy association.
To create a certificate filter policy association, complete these steps: