Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1975
Views
0
Helpful
2
Replies

crypto ca certificate map

art_henry
Level 1
Level 1

‎03-04-2008 01:02 PM - edited ‎03-09-2019 08:14 PM

Hello All,

I'm using certificates for authentication. My question is under the "crypto ca certificate map group 10" configuration I would like to use a logical OR so that multiple subjects can be evaluated? i.e. If subject-name attr john.doe or subject-name attr john.doe2 is true. Thanks

Labels:
0 Helpful
2 Replies 2

irisrios
Level 6
Level 6

‎03-10-2008 02:17 PM

There is a attribute called Subject which can be used to check for a valid user. Check the following URL http://cisco.com/en/US/docs/ios/12_3t/12_3t11/feature/guide/gt_dnall.html for more information.

0 Helpful

art_henry
Level 1
Level 1
In response to irisrios

‎03-11-2008 03:53 AM

Thank you for the response, my question was more in the configuration of multible subject under one mapping. I ended up opening a ticket and just received a response which indicates multiple subjects can not exist under a certificate map as na "OR" statement. Instead multiple maps are required i.e.

crypto ca certificate map DefaultCertificateMap 10

subject-name attr cn eq john.doe.s.1234567

crypto ca certificate map DefaultCertificateMap 10

subject-name attr cn eq john.doe.t.7654321

Hope this helps, thanks.

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents