HP-UX IPSec version A.02.01 Administrator's Guide
Using Certificates with HP-UX IPSec
Step 4: Configuring Authentication Records with IKE IDs
Chapter 5168
The DN consists of at least one of the following attributes:
CN=
commonName
C=
country
O=
organization
OU=
organizationalUnit
The attributes are all optional, but you must specify at least one.
Separate multiple attributes using commas. The order of the attributes
is ignored and the DN is not case sensitive.
If there are spaces in the DN, you must enclose the DN in double quotes
(ββ). For example, βCN=host1,C=US,O=My Company,OU=Blue Labβ.
The values are defined as follows:
commonName
: The commonName of the DN in printable string format.
Commas are not accepted as part of this value. The size of this value
must not exceed 64 bytes.
country
: The two-character ISO 3166-1 code for the country listed in the
DN, for example US for United States of America. Commas are not
accepted as part of this value.
organization
: The organization of the DN, for example
Hewlett-Packard. Commas are not accepted as part of this value. The
size of this value must not exceed 64 bytes.
USER-FQDN User-Fully Qualified Domain Name
(User-FQDN) in SMTP format for the subject
of the certificate, such as
user@myhost.hp.com., as configured in the
subjectAlternativeName field of the
certificate.
X500-DN X.500 Distinguished Name (DN), as
configured in the subjectName or
subjectAlternativeName field of the
certificate. The format of the DN is described
in the paragraphs that follow.
Table 5-1 ID Types and Values (Continued)
ID Type ID Value