| Message Code | PIX-3-320001 |
| Severity | Error |
| Description | The subject name of the peer cert is not allowed for connection |
| Explanation | When the Cisco ASA is an easy VPN remote device or server, the peer certificate contains a subject name that does not match the ca verifycertdn command. |
| User Action | This message might indicate a “man in the middle” attack, where a device spoofs the peer IP address and attempts to intercept a VPN connection from the Cisco ASA . |
| Reference Links |
Catch threats immediately
We work side-by-side with you to rapidly detect cyberthreats
and thwart attacks before they cause damage.