Message Image

Skip main navigation (Press Enter).

Layer7 API Management

Back to discussions

Expand all | Collapse all

CN name match FQDN

PopleysSep 18, 2017 09:11 PM

In general how could we enable at ssg ,the client request url of fqdn match with the certificate CN?

Matthew HoganSep 19, 2017 02:45 PM

Hello sharathbabu yeramalla , Are you able to give us a little more context on this question? ...

Zhijun HeSep 19, 2017 07:33 PM

I think the hostname validation is on client side, it's the default behavior for many browsers, if the ...

1. CN name match FQDN

0 Recommend
Popleys
Posted Sep 18, 2017 09:11 PM

Reply Reply Privately
In general how could we enable at ssg ,the client request url of fqdn match with the certificate CN?
2. Re: CN name match FQDN

1 Recommend
Broadcom Employee

Matthew Hogan
Posted Sep 19, 2017 02:45 PM

Reply Reply Privately
Hello sharathbabu yeramalla,

Are you able to give us a little more context on this question? Is the a particular error you are receiving?
3. Re: CN name match FQDN

1 Recommend
Broadcom Employee

Zhijun He
Posted Sep 19, 2017 07:33 PM

Reply Reply Privately
I think the hostname validation is on client side, it's the default behavior for many browsers, if the hostname doesn't match the cert CN, many browsers will give you a warning, and you have to manually trust the cert.
If you're talking about the outbound connection of gateway, I remember the gateway by default should raise an error if the hostname and cert CN are not matched.

Copyright 2023. All rights reserved.

Powered by Higher Logic