How do we enable Distinguished Name verification in VIA ?

Aruba Employee
Q:

How do we enable Distinguished Name verification in VIA ?



A:

From VIA 2.3 it checks for Distinguished Name (DN) values (CN, ORG, OU, Country), configured in VIA
connection profile vs values present in server certificate exchanged during IKE negotiation and EAP-TLS
exchange. If DN Values present in certificate matches with any pair of configured values, is considered as
match. If any value is not configured among configured DN value, for example, if CN is not configured but
ORG, OU, and country values are configured, VIA matches only the configured value.

 aaa authentication via connection-profile "default"
   dn-profile CN securelogin.arubanetworks.com ORG aruba OU IT Country US

 

From WeBUI:

Version history
Revision #:
2 of 2
Last update:
‎11-25-2015 04:09 PM
Updated by:
 
Labels (1)
Contributors
Search Airheads
cancel
Showing results for 
Search instead for 
Did you mean: