sTunnelVerifyPeer
BINTEC-STUNNEL-MIB ·
.0.12.1.2.1.11
Object
column
r/w
Enumeration
If VerifyPeer is set to 'none'(1) no SSL verification is done. Setting VerifyPeer to 'normal'(2) a normal SSL verification is done (certificates are checked). If it is set to 'high'(3) also the subjectname of the remote side's certificate will be checked and SSL connection will be cancelled if it doesn't match to RemoteCertSubject. In case of VerifyPeer is set to 'very_high' beside the RemoteCertSubject also the SerialNumber of the certificate is checked to be equal or greater than RemoteCertSerialNo and the DNS attribute (withing the subject alternative names) is checked to be equal against RemoteCertDns (if it is configured else no check against this variable is done). If VerifyPeer is set to 'accept-self-signed'(5) a 'normal' verification is done but self signed certificates will be accepted, too.
Context
- MIB
- BINTEC-STUNNEL-MIB
- OID
.0.12.1.2.1.11- Type
- column
- Access
- readwrite
- Status
- current
- Parent
- sTunnelEntry
Syntax
Enumeration
Values & Constraints
Enumerated Values
1 | none |
2 | normal |
3 | high |
4 | very-high |
5 | accept-self-signed |