filter
To configure one or more certificate mapping filters within the filter map, use the filter command.
filter [subject-name subject-name| altname-email e-mail-ID| altname-upn user-principal-name]
Syntax Description
(Optional) Specifies the subject name of the
certificate.
subject-name
Required subject name in LDAP distinguished name
(DN) string format. For example:
cn=%username%,ou=PKI,o=Acme,c=US
subject-name
(Optional) Specifies the e-mail ID as an alternate
name.
altname-email
E-mail address that must be present in the certificate
as a subject alternative name. For example:
%username%@*
e-mail-ID
(Optional) Specifies the user principal name as an
alternate name.
altname-upn
Principal name that must be present in the certificate
as a subject alternative name. For example:
%username-without-domain%@%hostname%
user-principal-name
Command Default
None
Command Modes
Certificate mapping filter configuration
Command History
ModificationRelease
This command was introduced.5.0(2)
Usage Guidelines
To use this command, you must create a new filter map.
The validation passes if the certificate passes all of the filters configured in the map.
This command does not require a license.
Cisco Nexus 7000 Series Security Command Reference
337
F Commands
filter
To Next Page
Loading...
