[Openswan Users] X.509
Marcus D. Leech
mleech at nortel.com
Tue Mar 1 18:35:01 CET 2005
I have the CA for my roadwarrior gateway setup to include subjectAltname fields
(IP address, and FQDN).
How do I configure the client side so that I don't have to use the full DN
in the {right,left}id field?
What I'd like is a policy from the client point of view that says
"any certificate issued by my root ca, and whose subjectAltName
fields 'make sense'".
--
Marcus Leech Mail: Dept W669, M/S: 04352P16
Advisor Phone: (ESN) 393-9145 +1 613 763 9145
Internet & Security Services
Nortel Networks mleech at nortelnetworks.com
More information about the Users
mailing list