Stack Overflow
Stack Overflow

Questions tagged [client-certificates]

X.509 certificates for client authentication during TLS handshake.

Client certificates are X.509 certificates used for TLS/SSL connections. In conjunction with , they allow clients to identify during TLS handshake, thus ensuring two-way authentication.

Client certificates are verified against one or more CA certificate(s) stored on the server.

1304 questions
15
votes
3 answers

Getting "The remote certificate is invalid according to the validation procedure" when SMTP server has a valid certificate

This seems a common error but while I've found a work-around (see below) I can't pin down the reason I'm getting it in the first place. I am writing SMTP functionality into our application and I'm attempting to add SSL functionality to the working…
RosieC
  • 649
  • 2
  • 11
  • 27
15
votes
2 answers

What is the purpose of creating a login from a certificate?

SQL Server provides the option to create a login from a certificate. E.g. USE MASTER; CREATE CERTIFICATE WITH SUBJECT = ' certificate in master database', EXPIRY_DATE = '12/05/2025'; GO CREATE LOGIN
Disillusioned
  • 14,635
  • 3
  • 43
  • 77
15
votes
2 answers

Google Chrome Client Certificate Popup

I'm implementing a mutual authentication for my client in order to solve not having to continually whitelist some of the agencies with a dynamic ip. The process works fine in all browsers that I've tried in the Windows environment (Windows 7). The…
CadmusPaladin
  • 318
  • 1
  • 2
  • 5
14
votes
2 answers

OnCertificateValidated not running - Self-Signed Certificate Client Authentication - ASP.NET Core and Kestrel

I would like to authenticate clients connecting to my ASP.NET Core Web API (.NET 5) running on Kestrel using certificate-based authentication. In my Startup.cs I have the following in…
TheProgrammerNinja3.14
  • 412
  • 3
  • 12
14
votes
3 answers

Android WebView handle onReceivedClientCertRequest

I'm developing an Android app using Client Certificate Authentication within WebView. The certificate (cert.pfx) and password are embedded in the application. When executing Client Certificate Authentication request with ajax call in the WebView,…
Tsahi Deri
  • 571
  • 1
  • 3
  • 14
14
votes
5 answers

Swift iOS Client Certificate Authentication

The web service I want to consume requires a client certificate. How can I send my certificate to it? To further elaborate I don't understand how to create the SecIdentityRef. In my NSURLConnection didReceiveAuthenticationChallenge I've got this…
sk1tt1sh
  • 198
  • 1
  • 2
  • 11
14
votes
2 answers

.Net SslStream with Client Certificate

I'm having no luck getting client certificates working with my SslStream project. No matter what I do, I can't get it to actually use the client certificate, despite the fact that all certificates are valid and trusted, and I have imported the CA…
Elkvis
  • 728
  • 1
  • 5
  • 21
13
votes
1 answer

How do client certificates work?

I am working with a REST service provider and they want me to use a client certificate provided by them when making HTTP call. How does a client cert achieve authentication? If someone has a copy of the client cert, they too can be authenticated…
Suneel
  • 817
  • 3
  • 10
  • 23
12
votes
1 answer

How does Kafka specify key alias for Client Authentication?

I've seen many places that show enabling Kafka client authentication using the same example code as…
fool4jesus
  • 2,147
  • 3
  • 23
  • 34
12
votes
1 answer

aiohttp and client-side SSL certificates

I recently moved off from flask + requests onto aiohttp and its async http client. In my scenario, I need to make a call to an API over HTTPS (with custom certificates) AND send a client-side certificate along. For the first part (validating custom…
Seeker89
  • 282
  • 1
  • 2
  • 9
12
votes
2 answers

OS X: Git with client certificates rejected

We access our Git server with client certificates by adding the following lines to ~/.gitconfig [http] sslCAInfo = /path/to/git-ca.crt sslCert = /path/to/git-client.crt sslKey = /path/to/git-client.pem This works fine on…
Thomas S.
  • 5,804
  • 5
  • 37
  • 72
12
votes
2 answers

Using CLIENT-CERT for Tomcat without specifying a username

I am trying to make a Tomcat web application use client certificate authentication for incoming connections. Everything works fine when using clientAuth=true in server.xml, however due to other applications running on the same server, we cannot use…
user unknown
  • 421
  • 1
  • 5
  • 14
11
votes
3 answers

Clear SSL client certificate state from JavaScript

I'm using client certificates in SSL sessions to authenticate users, but I'm having a bit of a problem with cached sessions. (I have configured IIS to accept—not require—client certificates.) Normal situation: A user accesses the page that asks for…
RicardoSBA
  • 785
  • 1
  • 6
  • 18
11
votes
1 answer

Prevent browser from prompting for client certificate for IIS app

We have an application deployed to IIS and every time we connect to it, we get the following browser prompt: Select a certificate to authenticate yourself to sitename We do not have a reason to challenge for a client certificate and seems like…
KyleMit
  • 30,350
  • 66
  • 462
  • 664
11
votes
0 answers

C#: How to invoke a SOAP service requiring client-side authentication with certificates installed at runtime

I have an application deployed to IIS that needs to invoke a SOAP service. It's using WCF from .NET Framework. That SOAP service requires that requests made be authenticated with a client-side certificate which is given at runtime. Admin users of…
peterguim
  • 111
  • 3
1 2
3
86 87