Previous page Section 3.11.23. TLS_SubjectAltNameURI Section 3.11.24. TLS_SubjectAltNameDNS (246 / 1691)   Table of Contents Section 3.11.25. TLS_CertificateFingerprint Next page

3.11.24. TLS_SubjectAltNameDNS Previous topic Parent topic Child topic Next topic

This optional parameter is used only by TLS clients. When a TLS server presents a certificate, this defines an FQDN that matches against a subjectAltNameDNS of type DNS in that certificate. Currently, this is not a regular expression but this is subject to change.
By default, the TLS client checks if the server certificate contains a subjectAltName extension of type IPADDR or DNS that matches the Host name used to connect to the server. When subjectAltNameDNS is configured, type DNS values are checked against the value configured with subjectAltNameDNS. This parameter has no default value.
Here is an example of using TLS_SubjectAltNameDNS:
# Host is set to an IP address so we set the expected name here
TLS_SubjectAltNameDNS test.server.open.com.au
Previous page Section 3.11.23. TLS_SubjectAltNameURI Section 3.11.24. TLS_SubjectAltNameDNS (246 / 1691)   Table of Contents Section 3.11.25. TLS_CertificateFingerprint Next page