64-58
Cisco ASA 5500 Series Configuration Guide using ASDM
OL-20339-01
Chapter 64 General VPN Setup
Configuring SSL VPN Connections
Using a negative index, as in the third row of this table, specifies to count from the end of the string
backwards to the end of the substring, in this case, the “r” of “user”.
When using filtering by substrings, you should know the length of the substring that you are seeking.
From the following examples, use either the regular expression matching or the custom script in Lua
format:
• Example 1: Regular Expression Matching—Enter a regular expression to apply to the search in the
Regular Expression field. Standard regular expression operators apply. For example, suppose you
want to use a regular expression to filter everything up to the @ symbol of the "Email Address (EA)"
DN value. The regular expression ^[^@]* would be one way to do this. In this example, if the DN
value contained a value of user1234@company.com, the return value after the regular expression
would be user1234.
• Example 2: Use custom script in Lua format—Specify a custom script written in the Lua
programming language to parse the search fields. Selecting this option makes available a field in
which you can enter your custom Lua script; for example, the script:
return cert.subject.cn..'/'..cert.subject.l
combines two DN fields, username (cn) and locality (l), to use as a single username and inserts the
slash (/) character between the two fields.
Table 64-3 lists the attribute names and descriptions that you can use in a Lua script.
Note Lua is case-sensitive.
Table 64-2 Filtering by Substring
Starting Index Ending Index Return Value
15 host/
610 user
6-1 user
Table 64-3 Attribute Names and Descriptions
Attribute Name Description
cert.subject.c Country
cert.subject.cn Common Name
cert.subject.dnq DN qualifier
cert.subject.ea Email Address
cert.subject.genq Generational qualified
cert.subject.gn Given Name
cert.subject.i Initials
cert.subject.l Locality
cert.subject.n Name
cert.subject.o Organization
cert.subject.ou Organization Unit
To Next Page
Loading...
Need help?
General
