Guest

Preview Tool

Cisco Bug: CSCun49295 - ACS should read multiple OU in cert so we can make authz condition on it

Last Modified

Feb 15, 2018

Products (1)

  • Cisco Secure Access Control Server Solution Engine

Known Affected Releases

5.5(0.46)

Description (partial)

Symptom:
When ACS looks at a certificate it will look at the Subject field and will read the first OU that it sees. Now if there are multiple OU's mentioned in the Subject field it will never read the second OU.  As an enhancement, ACS should be able to match multiple OUs in the certificate subject.  This could be used as an alternative to AD group matching.

Conditions:
ACS cannot read multiple OU in a certificate.  All versions of ACS 5.x lack this feature currently.
Bug details contain sensitive information and therefore require a Cisco.com account to be viewed.

Bug Details Include

  • Full Description (including symptoms, conditions and workarounds)
  • Status
  • Severity
  • Known Fixed Releases
  • Related Community Discussions
  • Number of Related Support Cases
Bug information is viewable for customers and partners who have a service contract. Registered users can view up to 200 bugs per month without a service contract.