User's Manual

ManualsBrandsDell ManualsComputer equipmentPowerconnect W-ClearPass Hardware Appliances

101

102

103

104

105

106

107

108

109

110

Subject

Alternative

Name

To include additional fields in the TLS client certificate issued for a device, mark the Include

device information in TLS client certificates check box. These fields are stored in the

subject alternative name (subjectAltName) of the certificate. Refer to Table 20 for a list of the

fields that are stored in the certificate when this option is enabled.

Storing additional device information in the client certificate allows for additional

authorization checks to be performed during device authentication.

Digest

Algorithm

Algorithm used to sign issued certificates.

If you are using an Aruba controller to perform EAP-TLS authentication using these client certificates, you must have

ArubaOS 6.1 or later to enable the Subject Alternative Name option and store device information in the subject

alternative name.

Name Description OID

Device ICCID Integrated Circuit Card Identifier (ICCID) number from the

Subscriber Identity Module (SIM) card present in the device.

This is only available for devices with GSM (cellular network)

capability, where a SIM card has been installed.

mdpsDeviceIccid (.4)

Device IMEI International Mobile Equipment Identity (IMEI) number

allocated to this device. This is only available for devices with

GSM (cellular network) capability.

mdpsDeviceImei (.3)

Device Serial Serial number of the device. mdpsDeviceSerial (.9)

Device Type Type of device, such as “iOS”, “Android”, etc. mdpsDeviceType (.1)

Device UDID Unique device identifier (UDID) for this device. This is typically

a 64-bit, 128-bit or 160-bit number represented in hexadecimal

(16, 32, or 40 characters, respectively).

mdpsDeviceUdid (.2)

MAC Address IEEE MAC address of this device. This element may be present

multiple times, if a device has more than one MAC address (for

example, an Ethernet port and a Wi-Fi adapter).

mdpsMacAddress (.5)

Product Name Product string identifying the device and often including the

hardware version information.

mdpsProductName (.6)

Product

Version

String containing the software version number for the device. mdpsProductVersion

(.7)

User Name String containing the username of the user who provisioned

the device.

mdpsUserName (.8)

Table 20: Device Information Stored in TLS Client Certificates

In the Retention Policy area:

Dell Networking W-ClearPass Guest 6.4 | User Guide Onboard | 103