Issuer Alternative Name Extension; Syntax - Red Hat CERTIFICATE SYSTEM 7.3 - COMMAND-LINE Manual
Command-line tools guide
Hide thumbs
Also See for CERTIFICATE SYSTEM 7.3 - COMMAND-LINE:
- Administration manual (554 pages) ,
- Manual (98 pages) ,
- Release note (24 pages)
Table of Contents
Advertisement
Chapter 19.
Issuer Alternative Name Extension
The GenIssuerAltNameExt creates a base-64 encoded blob that adds the issuer name extensions,
IssuerAltNameExt (OID 2.5.29.18), to the new certificate. This blob is pasted into the certificate
approval page when the certificate is created.
19.1. Syntax
The GenIssuerAltNameExt tool uses parameter pairs where the first parameter specifies the
general type of name attribute which is used for the issuer and the second parameter gives that name
in that format. The tool has the following syntax:
GenIssuerAltNameExt general_type0 general_name0 ... general_typeN general_nameN
Parameter
general_type
general_name
Description
Sets the type of name. It can be one of the
following strings:
• RFC822Name
• DirectoryName
• DNSName
• EDIPartyName
• URIName
• IPAddress
• OIDName
• OtherName
A string, conforming to the name type, that gives
the name of the issuer.
• For RFC822Name, the value must be a
valid Internet mail address. For example,
testCA@example.com.
• For DirectoryName, the value must
be a string form of X.500 name, similar
to the subject name in a certificate. For
example, cn=SubCA, ou=Research Dept,
o=Example Corporation, c=US.
• For DNSName, the value must be a valid
fully-qualified domain name. For example,
testCA.example.com.
• For EDIPartyName, the value must be
an IA5String. For example, Example
Corporation.
61
Advertisement
Table of Contents
Need help?
Do you have a question about the CERTIFICATE SYSTEM 7.3 - COMMAND-LINE and is the answer not in the manual?
Questions and answers