Configuration Level: Global, Container, User
A certificate policy is used to define a specific policy OID that must exist in a login certificate. If enabled, login certificates must contain the specified policy OID to be considered valid. The policy name and OID information are defined once globally. The check for policy setting can be enabled or disabled throughout the directory hierarchy.