Support User Manuals

Cisco Systems OL-16647-01 Network Router User Manual

Open as PDF

of 1230

35-66

Cisco ASDM User Guide

OL-16647-01

Chapter 35 General

Mapping Certificates to IPSec or SSL VPN Connection Profiles

–

Server Group—Select an available, previously configured authorization server group or group

of servers, including the LOCAL group. You can associate a server group with more than one

interface.

–

Add—Click Add to add the interface/server group setting to the table and remove the interface

from the available list.

–

Remove—Click Remove to remove the interface/server group from the table and restore the

interface to the available list.

• Authorization Settings—Lets you set values for usernames that the security appliance recognizes for

authorization. This applies to users that authenticate with digital certificates and require LDAP or

RADIUS authorization.

–

Use the entire DN as the username—Allows the use of the entire Distinguished Name (DN) as

the username.

–

Specify individual DN fields as the username—Enables the use of individual DN fields as the

username.

–

Primary DN Field—Lists all of the DN field identifiers for your selection.

–

Secondary DN Field—Lists all of the DN field identifiers (see the foregoing table) for your

selection and adds the option None for no selection.

DN Field Definition

Country (C) Two-letter country abbreviation. These codes conform to ISO 3166 country

abbreviations.

Common Name (CN) Name of a person, system, or other entity. This is the lowest (most specific)

level in the identification hierarchy.

DN Qualifier (DNQ) Specific DN attribute.

E-mail Address (EA) E-mail address of the person, system or entity that owns the certificate.

Generational Qualifier

(GENQ)

Generational qualifier such as Jr., Sr., or III.

Given Name (GN) First name of the certificate owner.

Initials (I) First letters of each part of the certificate owner’s name.

Locality (L) City or town where the organization is located.

Name (N) Name of the certificate owner.

Organization (O) Name of the company, institution, agency, association, or other entity.

Organizational Unit

(OU)

Subgroup within the organization.

Serial Number (SER) Serial number of the certificate.

Surname (SN) Family name or last name of the certificate owner.

State/Province (S/P) State or province where the organization is located.

Title (T) Title of the certificate owner, such as Dr.

User ID (UID) Identification number of the certificate owner.

User Principal Name

(UPN)

Used with Smart Card certificate authentication.

previous next