Skip to content
Was this article helpful?

authentication certPolicy

The following operations can be performed on "authentication certPolicy":

add | rm | set | unset | show

add authentication certPolicy

Adds a client certificate (cert) authentication policy. The policy defines the criteria under which the NetScaler appliance attempts to authenticate the user with the specified client cert authentication server.

Synopsys

add authentication certPolicy <name> <rule> [<reqAction>]

Arguments

name

Name for the client certificate authentication policy.

Must begin with a letter, number, or the underscore character (_), and must contain only letters, numbers, and the hyphen (-), period (.) pound (#), space ( ), at (@), equals (=), colon (:), and underscore characters. Cannot be changed after cert authentication policy is created.

The following requirement applies only to the NetScaler CLI:

If the name includes one or more spaces, enclose the name in double or single quotation marks (for example, "my authentication policy" or 'my authentication policy').

rule

Name of the NetScaler named rule, or a default syntax expression, that the policy uses to determine whether to attempt to authenticate the user with the authentication server.

reqAction

Name of the client cert authentication action to be performed if the policy matches.

rm authentication certPolicy

Removes a client cert authentication policy.

Synopsys

rm authentication certPolicy <name>

Arguments

name

Name of the client cert policy to remove.

set authentication certPolicy

Configures the specified client cert authentication policy.

Synopsys

set authentication certPolicy <name> [-rule <expression>] [-reqAction <string>]

Arguments

name

Name of the client cert policy.

rule

Name of the NetScaler named rule, or a default syntax expression, that the policy uses to determine whether to attempt to authenticate the user with the authentication server.

reqAction

Name of the client cert authentication action to be performed if the policy matches.

unset authentication certPolicy

Use this command to remove authentication certPolicy settings.Refer to the set authentication certPolicy command for meanings of the arguments.

Synopsys

unset authentication certPolicy <name> [-rule] [-reqAction]

show authentication certPolicy

Displays the current settings for the specified client cert authentication policy.If no policy name is provided, displays a list of all client cert authentication policies currently configured on the NetScaler appliance.

Synopsys

show authentication certPolicy [<name>]

Arguments

name

Name of the client cert authentication policy.

Outputs

rule

The rule associated with the policy.

reqAction

The cert action associated with the policy.

boundTo

The entity name to which policy is bound

activePolicy

priority

bindPolicyType

policyType

devno

count

stateflag

Was this article helpful?