Chapter 4
Configuring SSL Termination
Table 4-3
Server Certificate Fields Inserted In the HTTP Header (continued)
Field
ServerCert-Not-Before
ServerCert-Public-Key-Algorithm
ServerCert-RSA-Modulus-Size
ServerCert-RSA-Modulus
ServerCert-RSA-Exponent
OL-5655-01
Configuring Virtual SSL Servers for an SSL Proxy List
Description
Description: Certificate is not valid before this date
Format: A universal time string or generalized time string in
the Not Before date of the Validity field
Example: ServerCert-Not-Before: 2002-1-27 00:00:00.00
UTC
Description: The algorithm used for the public key
Format: The rsaEncryption, rsa, or dsaEncryption public key
algorithm used to create the public key in a certificate
Example: ServerCert-Public-Key-Algorithm: rsaEncryption
Description: Size of the RSA public key
Format: Number of bits as a whole integer of the RSA
modulus (typically 512, 1024, or 2048), followed by the word
bit
Example: ServerCert-RSA-Modulus-Size: 1024 bit
Description: RSA modulus
Format: The RSA algorithm modulus (n) printed in
big-endian format hexadecimal, without leading 0x, and
lowercase alphanumeric characters separated by a colon (:)
character. Together with the exponent (e), this modulus forms
the public key portion in the RSA certificate.
Example: ServerCert-RSA-Modulus: +
00:d8:1b:94:de:52:a1:20:51:b1:77
Description: The public RSA exponent
Format: Printed as a whole integer for the RSA algorithm
exponent (e)
Example: ServerCert-RSA-Exponent: 65537
Cisco Content Services Switch SSL Configuration Guide
4-29