Manualshelf

iTP Secure WebServer System Administrator's Guide (iTPWebSvr 5.1+)

ManualsBrandsHP ManualsServerHP NonStop G-Series
71727374757677787980
Configuring for Secure Transport
iTP Secure WebServer System Administrator’s Guide522659-001
4-5
Support for International 128-Bit SSL Sessions
Using VeriSign’s Global Server ID
Table 4-1 lists and describes the most common DN attributes.
The following example shows a DN for a server maintained by an organization (O)
named Compedia, Inc. that has two organization units (Marketing and
Master-Project-
Group) included in the DN:
CN=www.compedia.com,OU=Marketing,OU=Master-Project-Group,
O= "Compedia, Inc.",L=Portsmouth,ST=New Hampshire,C=US
In this example, the quotation marks in the Organization (O) field distinguish the literal
comma within the company name (the comma between Compedia and Inc.) from
other commas used as field separators.
Support for International 128-Bit SSL Sessions Using VeriSign’s Global
Server ID
The iTP Secure WebServer (domestic-secure version) supports VeriSign's Global Server
ID, which enables 128-bit SSL sessions with the 40-bit export versions of browsers and
other clients that offer Netscape’s International Step-Up or Microsoft’s Server Gated
Cryptography (SGC) capability.
Without the use of approved mechanisms such as the Global Server ID, 128-bit
encryption is greatly restricted by United States export regulations when either the
server or browser is located outside U.S. borders.
Global Server IDs enable secure transactions internationally; however, in the United
States consumer market alone, more than half of the browsers being used are 40-bit
export versions of Netscape Navigator or Internet Explorer.
Table 4-1. Common Distinguished Name (DN) Attributes
Attribute Description
CN Common Name: The name of the owner of the certificate.
OU Organizational Unit: The name of the owner’s organizational
subdivision. DNs can include multiple OUs. An example of multiple
OUs is shown after this table.
O Organization: The name of the owner’s organization (company name).
L Locality: The city or other geographic location of an organization.
ST State or Province: The U.S. state, Canadian province, or similar
subdivision. State names must be spelled out completely. No postal
abbreviations are allowed.
C Country: The ISO country code of the country in which the certificate
issuer is located (for example, C=US).
1
1
Some of these attributes may be omitted in a particular DN, in accordance with the requirements of a
particular CA. However, in general, at least CN, O, ST, and C are required.