Manualshelf

System information

ManualsBrandsRed Hat ManualsOtherCERTIFICATE SYSTEM 7.3 - COMMAND-LINE
81828384858687888990
Issuer Alternative Name Extension
The GenIssuerAltNameExt creates a base-64 encoded blob that adds the issuer name
extensions, IssuerAltNameExt (OID 2.5.29.18), to the new certificate. This blob is pasted into
the certificate approval page when the certificate is created.
1. Syntax
The GenIssuerAltNameExt tool uses parameter pairs where the first parameter specifies the
general type of name attribute which is used for the issuer and the second parameter gives that
name in that format. The tool has the following syntax:
GenIssuerAltNameExt general_type0 general_name0 ... general_typeN
general_nameN
Parameter Description
general_type Sets the type of name. It can be one of the
following strings:
RFC822Name
DirectoryName
DNSName
EDIPartyName
URIName
IPAddress
OIDName
OtherName
general_name A string, conforming to the name type, that
gives the name of the issuer.
For RFC822Name, the value must be a valid
Internet mail address. For example,
testCA@example.com.
For DirectoryName, the value must be a
string form of X.500 name, similar to the
subject name in a certificate. For example,
cn=SubCA, ou=Research Dept,
Chapter 19.
73