Manualshelf

HP-UX IPSec A.03.00.01 Release Notes (HP-UX 11i Version 3)

ManualsBrandsHP ManualsSoftwareHP-UX IPSec Software
12345678910
2 New and changed features
New and changed features in A.03.00.01
With the A.03.00.01 release of HP-UX IPSec, the ipsec_config add csr command now
supports specifying multiple values (up to 20) for the following types of alternative names for the
subjectAlternativeName field of a certificate:
-alt-ipv4
-alt-fqdn
-alt-user_fqdn
Without this enhancement, if IPSec is being used with the Secure Resource Partitions (SRP) product,
then each SRP would have to use the same ID when authenticating. For more information about
SRP, see the HP-UX Security Manuals web page at the following location:
http://www.hp.com/go/hpux-security-docs (select HP-UX Secure Resource Partitions (SRP)
Software)
Revised ipsec_config add csr command syntax
The new command syntax for the command is as follows:
ipsec_config add csr -subj[ect_name] subject_name
[-alt-ipv4 ipv4_addr1 [-alt-ipv4 ipv4_addr2 ... -alt-ipv4 ipv4_addr20]]
[-alt-fqdn fqdn1 [-alt-fqdn fqdn2 ... -alt-fqdn fqdn20]]
[-alt-user-fqdn user_fqdn1 [-alt-user-fqdn user_fqdn2 ... -alt-user-fqdn user_fqdn20]]
[-key_length number_bits] [-days number_days]
Description of revised ipsec_config add csr command alternative-name
options
The following includes specifics about the three alternative-name options:
-alt-ipv4 ipv4_addr Specifies the IPv4 address you want in the
subjectAlternativeName field of the certificate. You can
specify up to 20 IPv4 addresses by repeating the
-alt-ipv4 ipv4_addr argument accordingly. For
example, the following specifies three IPv4 addresses:
-alt-ipv4 192.6.2.2 -alt-ipv4 192.6.2.3
-alt-ipv4 192.6.2.5
-alt-fqdn fqdn Specifies the Fully Qualified Domain Name (FQDN) you
want in the subjectAlternativeName field of the certificate,
such as myhost.acme.com. The FQDN is also referred to
as the Domain Name Service or DNS name. You can specify
up to 20 FQDNs by repeating the -alt-fqdn fqdn
argument accordingly. For example, the following specifies
two FQDNs:
-alt-fqdn myhost1.acme.com -alt-fqdn
myhost2.acme.com
-alt-user-fqdn user_fqdn1 Specifies the User-FQDN you want in the
subjectAlternativeName field of the certificate, such as
johnson@myhost.acme.com. You can specify up to 20
User-FQDNs by repeating the -alt-user-fqdn
user_fqdn argument accordingly. For example, the
following specifies two User-FQNDs:
6 New and changed features