How do we enable Distinguished Name verification in VIA ?
From VIA 2.3 it checks for Distinguished Name (DN) values (CN, ORG, OU, Country), configured in VIA
connection profile vs values present in server certificate exchanged during IKE negotiation and EAP-TLS
exchange. If DN Values present in certificate matches with any pair of configured values, is considered as
match. If any value is not configured among configured DN value, for example, if CN is not configured but
ORG, OU, and country values are configured, VIA matches only the configured value.
aaa authentication via connection-profile "default"
dn-profile CN securelogin.arubanetworks.com ORG aruba OU IT Country US