Chapter 4 Configuring SSL Termination
Configuring Virtual SSL Servers for an SSL Proxy List
4-24
Cisco Content Services Switch SSL Configuration Guide
OL-5655-01
ClientCert-Issuer Description: X.509 Certificate Issuer’s Distinguished Name
Format: String of characters representing the certificate authority
that issued this certificate
Example: ClientCert-Issuer: CN=Example CA, ST=Virginia,
C=US/Email=ca@exampleca.com, 0=Root
ClientCert-Not-After Description: Certificate is not valid after this date
Format: A universal time string or generalized time string in the
Not After date of the Validity field
Example: ClientCert-Not-After: 2003-1-27 23:59.59 UTC
ClientCert-Not-Before Description: Certificate is not valid before this date
Format: A universal time string or generalized time string in the
Not Before date of the Validity field
Example: ClientCert-Not-Before: 2002-1-27 00:00:00.00 UTC
ClientCert-Public-Key-Algorithm Description: The algorithm used for the public key
Format: The rsaEncryption, rsa, or dsaEncryption public key
algorithm used to create the public key in the certificate
Example: ClientCert-Public-Key-Algorithm: rsaEncryption
ClientCert-RSA-Modulus-Size Description: Size of the RSA public key
Format: Number of bits as a whole integer of the RSA modulus
(typically 512, 1024, or 2048), followed by the word bit
Example: ClientCert-RSA-Modulus-Size: 1024 bit
ClientCert-RSA-Modulus Description: RSA modulus
Format: The RSA algorithm modulus (n) printed in big-endian
format hexadecimal, without leading 0x, and lowercase
alphanumeric characters separated by a colon (:) character.
Together with the exponent (e), this modulus forms the public key
portion in the RSA certificate
Example: ClientCert-RSA-Modulus: +
00:d8:1b:94:de:52:a1:20:51:b1:77
Table 4-2 Client Certificate Fields Inserted in the HTTP Header (continued)
Client Certificate Field Description, Format, and Example
To Next Page
Loading...
Need help?
General
