Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1168
Views
0
Helpful
0
Replies

certificate authentication with dnQualifier (DNQ)

Matt Wilks
Level 1
Level 1

‎03-19-2013 08:51 AM

I'm attempting to do certificate based authentication / authorization using the dnQualifier field on the certificate to store our username in the LDAP directory where the auth check is performed.  I am using the standard OID for dnQualifier (2.5.4.46), but any certificate that I issue with a DNQ as part of the Subject is rejected by the ASA.  Also, if I put a DNQ field in the CA cert and attempt to import that under Remote Access -> Certificate Management -> CA Certificates, the certificate is rejected as invalid.

Any ideas as to why a cert with a DNQ is being rejected?

Running ASDM version 7.1(1)52, ASA version 9.1(1), Cisco AnyConnect version 3.1.02026.

Labels:
0 Helpful
0 Replies 0
Customers Also Viewed These Support Documents