OF-3122: Stop using Common Name based identities by default
When dealing with certificates used for authentication (SASL EXTERNAL / mutual authentication) Openfire should no longer offer, by default, the functionality to obtain an identify from Common Name attributes.
Common Name usage was supposedly phased on in 2017 and CAB Forum compliant CAs do not allow users to arbitrarily pick Subject RDNs at all.
Furthermore, CAB Forum CAs always include a SAN as nothing is supposed to be using CommonName at all.
This commit removes this functionality from being enabled _by default_. It can be restored by adding the mapper disabled by this commit in the relevant properties:
OF-3122: Update test fixture to not use a cert with only a Common Name based identity
As Openfire no longer, by default, uses Common Name based identies (see the previous commit), our tests should no longer use certificates that are based on them.
This commit changes a certificate used for testing, by adding a Subject Alternate Name.
