certutil sshx509v3

Configures the SSH user certificate Distinguished Name (DN).

Syntax

certutil sshx509v3 { user user-name DN DN-attributes }
no certutil sshx509v3 { user user-name }

Command Default

By default, a DN is not configured.

Parameters

user user-name
Specifies the user name associated with the DN.
DN DN-attributes
Specifies the attributes of the DN, which can include any of the following:
  • SERIALNUMBER: Certificate serial number
  • emailAddress: Email address
  • UID, USERID: User ID
  • CN: Common name
  • T: Title
  • OU: Organizational Unit
  • DC: Domain component
  • O: Organization
  • STREET: Street or street address
  • L: Locality
  • ST, SP, S: State or Province
  • PC: Postal or zip code
  • C: Country

Modes

Privileged EXEC mode

Usage Guidelines

Use the no form of the command to remove the DN.

Examples

This following is a typical example. 

device# certutil sshx509v3 user user1 DN “C=US, ST=California, L=SJC, 
O=ExtrNet Inc, OU=DCIP EMIS, CN=user1/emailAddress=myname@mycompany.com”
9036689-01 Rev AA