Table 10-15 Subject Alternative Name Extension Default Configuration Parameters
Parameter
Description
Specifies the general-name type for the request attribute.
Type
• Select RFC822Name if the request-attribute value is an Internet mail
address in the local-part@domain format. For example,
jdoe@example.com.
• Select DirectoryName if the request-attribute value is an X.500
directory name, similar to the subject name in a certificate. For
example,
CN=Jane Doe, OU=Sales Dept, O=Example Corporation,
C=US.
• Select DNSName if the request-attribute value is a DNS name. For
example, corpDirectory.example.com.
• Select EDIPartyName if the request-attribute value is a EDI party
name. For example, Example Corporation.
• Select URLName if the request-attribute value is a non-relative URI that
includes both a scheme (for example, http) and a fully qualified
domain name or IP address of the host. For example,
http://hr.example.com.
• Select IPAddress if the request-attribute value is a valid IP address
specified in dot-separated numeric component notation. For example,
128.21.39.40.
• Select OIDName if the request-attribute value is a unique, valid OID
specified in the dot-separated numeric component notation. For
example, 1.2.3.4.55.6.5.99.
Subject Key Identifier Extension Default
This default populates a subject key identifier extension in the certificate request.
The extension is used to identify certificates that contain a particular public
key—that is, the extension is used to uniquely identify a certificate from among
several that have the same subject name.
For general information about this extension, see "subjectKeyIdentifier" on
page 767.
Defaults Reference
Chapter 10
Certificate Profiles
467