[Openswan Users] X.509

Marcus D. Leech mleech at nortel.com
Tue Mar 1 18:35:01 CET 2005

I have the CA for my roadwarrior gateway setup to include subjectAltname fields
  (IP address, and FQDN).

How do I configure the client side so that I don't have to use the full DN
  in the {right,left}id field?

What I'd like is a policy from the client point of view that says
  "any certificate issued by my root ca, and whose subjectAltName
  fields 'make sense'".

Marcus Leech                Mail:   Dept W669, M/S: 04352P16
Advisor                     Phone: (ESN) 393-9145  +1 613 763 9145
Internet & Security Services
Nortel Networks                          mleech at nortelnetworks.com

More information about the Users mailing list