Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Del
New Member

crypto pki trustpoint subject-name

Hoping for some clarification or direction to find an answer.

On a router I am required to use tls.  I have started with configuring the trustpoint.


crypto pki trustpoint sip-trunk-cert
 enrollment terminal
 serial-number none
 fqdn none
 ip-address none
 subject-name CN=heiwbc01,OU=Contractor,OU=PKI,OU=Blah,O=Blah,C=US
 revocation-check none
 rsakeypair sip-trunk-key

 

I submitted my request to the certificate authority that I am required to.  When they sent me back the certificate they told me they had to fix the word contractor in my request.  The word contractor is required to be in all capitals.

i.e.  subject-name CN=heiwbc01,OU=CONTRACTOR,OU=PKI,OU=Blah,O=Blah,C=US

 

My question is do I really need to do anything with the config on the router?

Do I need to change my subject name to match what they sent me back?

 

 

Thanks in advance for any direction.

 

 

1 REPLY

Hi Del, Yes. As per my

Hi Del,

 

Yes. As per my knowledge you should change in your configuration part as well, because they have modified your CSR request with Organization unit in Caps.... my CA authority will specify before i put up any request itself, you should have all in Caps except for your CN value..... Because your root certficates and ssl certificates will be with the modified information....

 

Regards

Karthik

174
Views
4
Helpful
1
Replies
CreatePlease to create content