03-04-2008 01:02 PM - edited 03-09-2019 08:14 PM
Hello All,
I'm using certificates for authentication. My question is under the "crypto ca certificate map group 10" configuration I would like to use a logical OR so that multiple subjects can be evaluated? i.e. If subject-name attr john.doe or subject-name attr john.doe2 is true. Thanks
03-10-2008 02:17 PM
There is a attribute called Subject which can be used to check for a valid user. Check the following URL http://cisco.com/en/US/docs/ios/12_3t/12_3t11/feature/guide/gt_dnall.html for more information.
03-11-2008 03:53 AM
Thank you for the response, my question was more in the configuration of multible subject under one mapping. I ended up opening a ticket and just received a response which indicates multiple subjects can not exist under a certificate map as na "OR" statement. Instead multiple maps are required i.e.
crypto ca certificate map DefaultCertificateMap 10
subject-name attr cn eq john.doe.s.1234567
crypto ca certificate map DefaultCertificateMap 10
subject-name attr cn eq john.doe.t.7654321
Hope this helps, thanks.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide