General commands, Show certificate information, Show subject information – Nortel Networks NN46120-104 User Manual
Page 128: Check if key and certificate match
128
Certificates and Client Authentication
General Commands
This section includes examples on how to use some general Certificate
menu commands.
Show Certificate Information
The
info
command is used to show brief information about the selected
certificate.
>> Certificate 1# info
Serial number:
0 (0x0)
Expire:
Nov 29 12:42:17 2006 GMT
Certificate subject:
C=US
ST=Texas
L=Dallas
O=Nortel
OU=Switching
CN=John/[email protected]
Show Subject Information
The
subject
command is used to view the subject information adhering
to the selected certificate. Parts of a client certificate’s subject information
can be used extract to user name and password. For usage examples,
see the "Client Certificate Authentication" section in the "Authentication
Methods" chapter in the CLI/BBI Application Guide for VPN.
>> Certificate 1# subject
Certificate subject:
C/countryName (2.5.4.6)
= US
ST/stateOrProvinceName (2.5.4.8)
= Texas
L/localityName (2.5.4.7)
= Dallas
O/organizationName (2.5.4.10)
= Nortel
OU/organizationalUnitName (2.5.4.11)
= Switching
CN/commonName (2.5.4.3)
= John
emailAddress/emailAddress (1.2.840.113549.1.9.1) =
Check if Key and Certificate Match
To check if the private key matches the public key in the selected
certificate, use the following command:
Nortel VPN Gateway
User Guide
NN46120-104
02.01
Standard
14 April 2008
Copyright © 2007-2008 Nortel Networks
.