What is the GridShib Certificate Registry?
The GridShib Certificate Registry stores name mappings at the identity provider (IdP). A user uploads an X.509 public key certificate to the IdP (via a web interface), the IdP extracts the Subject DN from the certificate, and then the DN is stored in a table along with the user’s local principal name.