03-04-2008 01:02 PM - edited 03-09-2019 08:14 PM
Hello All,
I'm using certificates for authentication. My question is under the "crypto ca certificate map group 10" configuration I would like to use a logical OR so that multiple subjects can be evaluated? i.e. If subject-name attr john.doe or subject-name attr john.doe2 is true. Thanks
03-10-2008 02:17 PM
There is a attribute called Subject which can be used to check for a valid user. Check the following URL http://cisco.com/en/US/docs/ios/12_3t/12_3t11/feature/guide/gt_dnall.html for more information.
03-11-2008 03:53 AM
Thank you for the response, my question was more in the configuration of multible subject under one mapping. I ended up opening a ticket and just received a response which indicates multiple subjects can not exist under a certificate map as na "OR" statement. Instead multiple maps are required i.e.
crypto ca certificate map DefaultCertificateMap 10
subject-name attr cn eq john.doe.s.1234567
crypto ca certificate map DefaultCertificateMap 10
subject-name attr cn eq john.doe.t.7654321
Hope this helps, thanks.
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: