beautypg.com

General commands, Show certificate information, Show subject information – Nortel Networks NN46120-104 User Manual

Page 128: Check if key and certificate match

background image

128

Certificates and Client Authentication

General Commands

This section includes examples on how to use some general Certificate
menu commands.

Show Certificate Information

The

info

command is used to show brief information about the selected

certificate.

>> Certificate 1# info

Serial number:

0 (0x0)

Expire:

Nov 29 12:42:17 2006 GMT

Certificate subject:

C=US

ST=Texas

L=Dallas

O=Nortel

OU=Switching

CN=John/[email protected]

Show Subject Information

The

subject

command is used to view the subject information adhering

to the selected certificate. Parts of a client certificate’s subject information
can be used extract to user name and password. For usage examples,
see the "Client Certificate Authentication" section in the "Authentication
Methods" chapter in the CLI/BBI Application Guide for VPN.

>> Certificate 1# subject

Certificate subject:

C/countryName (2.5.4.6)

= US

ST/stateOrProvinceName (2.5.4.8)

= Texas

L/localityName (2.5.4.7)

= Dallas

O/organizationName (2.5.4.10)

= Nortel

OU/organizationalUnitName (2.5.4.11)

= Switching

CN/commonName (2.5.4.3)

= John

emailAddress/emailAddress (1.2.840.113549.1.9.1) =

[email protected]

Check if Key and Certificate Match

To check if the private key matches the public key in the selected
certificate, use the following command:

Nortel VPN Gateway

User Guide

NN46120-104

02.01

Standard

14 April 2008

Copyright © 2007-2008 Nortel Networks

.