Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
New Member

ACS 5.3 certificate authentication profile

Hello frineds,

I am configuring 802.1x certificate authentication EAP-TLS  for LAN using ACS 5.3

Now in ACS 5.3 I had configured certificate authentication profile. In can see that there is predefined certificate authentication profile in ACS.

which is like " Prinacipal username x509 attribute" and then there is drop down to select methods for authentication as mentioned below.

1]Common Name

2]Subject Alternative Name

3]Subject serial number

4]Subject

5]Subject Alternative Name - Other name

6]Subject Alternative Name - Email

7]Subject Alternative Name - DNS

Now could someone clear me what attributes are checked from certificate while authentication and which option I coul select from drop down menu which has mentioned 6 mentods.

When I use "Subject Alternative Name" in drop down it authenticae the already present certificat which is used for "WLAN" and machine can come into Network. I am wondering about certificates are checked for using those attributes.

Regards

Ajay

1403
Views
0
Helpful
0
Replies
CreatePlease to create content