WifiEnterpriseConfig.DomainSuffixMatch Property
Definition
Important
Some information relates to prerelease product that may be substantially modified before it’s released. Microsoft makes no warranties, express or implied, with respect to the information provided here.
Get the domain_suffix_match value. -or- Set the domain_suffix_match directive on wpa_supplicant.
public virtual string? DomainSuffixMatch { [Android.Runtime.Register("getDomainSuffixMatch", "()Ljava/lang/String;", "GetGetDomainSuffixMatchHandler", ApiSince=23)] get; [Android.Runtime.Register("setDomainSuffixMatch", "(Ljava/lang/String;)V", "GetSetDomainSuffixMatch_Ljava_lang_String_Handler", ApiSince=23)] set; }[<get: Android.Runtime.Register("getDomainSuffixMatch", "()Ljava/lang/String;", "GetGetDomainSuffixMatchHandler", ApiSince=23)>]
[<set: Android.Runtime.Register("setDomainSuffixMatch", "(Ljava/lang/String;)V", "GetSetDomainSuffixMatch_Ljava_lang_String_Handler", ApiSince=23)>]
member this.DomainSuffixMatch : string with get, setProperty Value
The domain value.
- Attributes
Remarks
Property getter documentation:
Get the domain_suffix_match value. See setDomSuffixMatch.
Java documentation for android.net.wifi.WifiEnterpriseConfig.getDomainSuffixMatch().
Property setter documentation:
Set the domain_suffix_match directive on wpa_supplicant. This is the parameter to use for Hotspot 2.0 defined matching of AAA server certs per WFA HS2.0 spec, section 7.3.3.2, second paragraph.
From wpa_supplicant documentation:
Constraint for server domain name. If set, this FQDN is used as a suffix match requirement for the AAAserver certificate in SubjectAltName dNSName element(s). If a matching dNSName is found, this constraint is met.
Suffix match here means that the host/domain name is compared one label at a time starting from the top-level domain and all the labels in domain_suffix_match shall be included in the certificate. The certificate may include additional sub-level labels in addition to the required labels.
More than one match string can be provided by using semicolons to separate the strings (e.g., example.org;example.com). When multiple strings are specified, a match with any one of the values is considered a sufficient match for the certificate, i.e., the conditions are ORed ogether.
For example, domain_suffix_match=example.com would match test.example.com but would not match test-example.com.
Note: If no domain suffix is set for an Enterprise configuration, either by not calling this API, or by calling it with null, or not setting alternate subject match using the #setAltSubjectMatch(String), then the server certificate validation is incomplete - which means that the connection is not secure.
Java documentation for android.net.wifi.WifiEnterpriseConfig.setDomainSuffixMatch(java.lang.String).
Portions of this page are modifications based on work created and shared by the Android Open Source Project and used according to terms described in the Creative Commons 2.5 Attribution License.