cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
693
Views
0
Helpful
2
Replies

Function of FQDN name in Truspoint on CUBE

tschafferx
Level 1
Level 1

Hello Cisco community,

 

I am deploying trustpoints on CUBE for SIPs to the CUCM.

I have seen configurations that mention FQDN = none.

My question is, when I would fill in a name for the FQDN. I am aware that CUCM checks the subject name of the certificate.

 

For what will the fqdn name in the certficate be used? Where does the fqdn appear in the router certificate.

 

Thank you in advance.

2 Replies 2

Jonathan Schulenberg
Hall of Fame
Hall of Fame
The FQDN is likely the CN but this is easy to check with OpenSSL after you generate the certificate:
openssl x509 -in certificate.crt -text -noout

Hi Jonathan,

 

thank you for your Reply. Do you know a Scenario where I would fill in the FQDN when Setting up the trustpoint.

 

I found the following in the Cisco documentation. I asked myself the Question when you would use a FQDN instead of the subject Name. Best regards, Thomas

 

subject-name [x.500-name ]

Example:

Router(ca-trustpoint)# subject-name cat

(Optional) Specifies the requested subject name that will be used in the certificate request.

  • x.500-name --If it is not specified, the fully qualified domain name (FQDN), which is the default subject name, will be used.

Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: