Question

TLS certificate fields for authentication


Hello,
we want to use certificate attributes as described in https://gtacknowledge.extremenetworks.com/articles/Solution/Using-TLS-Certificate-fields-for-authent... for rules in the NAC. According to the article, there are only the listed attributes available. As we have to consider multiple different clients where certificates are generated automatically by the corresponding management systems, we are quite limited by the attributes we can choose from. What I am missing in the list are the "default" attributes like "localityName" or "organizationalUnitName" etc. The article refers to the "dictionary.freeradius.internal" dictionary, but AFAIK there is something like a default dictionary in freeradius which is also used. Does anyone have any information on this? Perhaps the syntax of the "default" attributes, if available? Any help very appreciated!

0 replies

Be the first to reply!

Reply