Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
New Member

crypto ca certificate map

Hello All,

I'm using certificates for authentication. My question is under the "crypto ca certificate map group 10" configuration I would like to use a logical OR so that multiple subjects can be evaluated? i.e. If subject-name attr john.doe or subject-name attr john.doe2 is true. Thanks

2 REPLIES
Silver

Re: crypto ca certificate map

There is a attribute called Subject which can be used to check for a valid user. Check the following URL http://cisco.com/en/US/docs/ios/12_3t/12_3t11/feature/guide/gt_dnall.html for more information.

New Member

Re: crypto ca certificate map

Thank you for the response, my question was more in the configuration of multible subject under one mapping. I ended up opening a ticket and just received a response which indicates multiple subjects can not exist under a certificate map as na "OR" statement. Instead multiple maps are required i.e.

crypto ca certificate map DefaultCertificateMap 10

subject-name attr cn eq john.doe.s.1234567

crypto ca certificate map DefaultCertificateMap 10

subject-name attr cn eq john.doe.t.7654321

Hope this helps, thanks.

1018
Views
0
Helpful
2
Replies
CreatePlease to create content