You can use predicates to tune the behavior of an Oracle Certificate Authority policy to suit your requirements. Predicates are optional and can be applied to RA Request, RA Revoke, and RA Renew operations. Predicates cannot be added for a custom policy. See Oracle Certificate Authority Administrator's Guide for information about how to write predicate expressions and their syntax.
To add predicates to policy rules:
On the main Policy page of the Configuration Management tab, select the Operation type for the policy to which you want to add a predicate and click Go. A list of policies for that Operation type displays.
Select the policy you want to modify by clicking the radio button adjacent to the Policy Name and click Edit. The Edit page appears, displaying the Parameter Details and the Predicates Details.
Click Add Another Row.
Enter a predicate expression in the text box and choose the parameter values you want for this expression.
For example, the following predicate specifies client SSL certificates:
Type=="client" AND Usage=="ssl"
The following predicate example specifies server certificates for the sales department:
Type=="server" AND DN=="ou=sales"
Click OK to save this policy predicate.
Restart the Oracle Certificate Authority server for your changes to take effect. See Starting and Stopping Oracle Certificate Authority Server
Deleting Predicates from Policy Rules