Stack Overflow
Stack Overflow

Questions tagged [mtls]

Use for mutual TLS, a technology to enhance network security.

mTLS, or mutual TLS is common on Zero Trust Networking architectures to increase security in internal networks, especially when deployed in a cloud environment.

mTLS is often implemented with a Service Mesh in a Kubernetes cluster.

222 questions
0
votes
1 answer

Can Apache ZooKeeper 4lw (FourLetterWord) be used with mTLS (mutual Transport Layer Security)?

I've used 4lw over unsecured connections, but I want to use 4lw over connections secured with mTLS. So far no success. If this isn't supported, what is recommended in place of 4lw? AdminServer?
Cedric
  • 41
  • 1
0
votes
1 answer

Mutual TLS at the application level with OpenSSL

I have a Node.js server that receives a request with the Client TLS certificate supplied in the XFCC header. I would like to perform the Mutual TLS at the Application level, i.e. validate Client TLS cert against the server's CA truststore - all of…
Dmitry Kankalovich
  • 553
  • 2
  • 8
  • 19
0
votes
1 answer

I want spring boot application which accepts https request and send this request to other app on http and send this http response back to https req

I tried and able to read the CA certificates succsssfully send in request. But when sending request to other app over http getting error as " This combination of host and port required TLS" . Is there any way I can send the request to http and on…
Dipisha jain
  • 1
  • 1
0
votes
1 answer

mTLS X509 authenticated request in Java

I'm looking for a way to implement the following mTLS authenticated request in Java: PFX=x509.pfx curl --location --request POST 'https://example.com/' \ --cert-type p12 \ --cert "$PFX:mySecretPassword" I'm using a x509 pfx file encrypted with…
maz
  • 143
  • 8
0
votes
0 answers

Unable to run sonar-scanner for sonarqube over https

I have a sonarQube running over https. In order to reach it I have been provided two file( both .pem), one is having certificate and other is having private key. -----BEGIN…
Lakshay Jain
  • 1
  • 1
0
votes
1 answer

Hashicorp's Vault CLI does not store authentication token in token helper

After I login to my Vault with TLS authentication vault login -method=cert \ -ca-cert=/path/to/ca/cert \ -client-cert=/path/to/client/cert \ -client-key=/path/to/client/key I would expect the returned token to be…
ricardoptcosta
  • 11
  • 2
0
votes
2 answers

How do you do GRPC authentication in an istio mTLS setup?

I have bunch of GRPC microservices and they are using self signed certs. I add authentication info to the GRPC channel which is then used to identify endpoints and provide right services. Now I want migrate to Istio mTLS. In phase one, I got Istio…
RandomQuests
  • 635
  • 4
  • 16
0
votes
1 answer

Istio and Hashicorp Vault: using SPIFFE to authenticate with Vault

I'm new to Hashicorp Vault. I am wondering if there is a way to take advantage of the SPIFFE protocol to automatically authenticate with Vault, so based on a vault client's mTLS certificate, a workload in Kubernetes/Istio can access Vault as a…
Joe J
  • 9,985
  • 16
  • 68
  • 100
0
votes
1 answer

Does IIS allow the client to use a server certificate as client certificate?

This is a follow-up question of Use Server Certificate As Client Certificate. I know that you SHOULD use client certificate for client authentication. It seems that some servers allow the client to present a certificate that is actually a "server…
Devs love ZenUML
  • 11,344
  • 8
  • 53
  • 67
0
votes
1 answer

MTLS - generate certificate to nodejs client side

We need to communicate between our ec2 server and our customer server via Mutual TLS. The requests are sent from our server to our customer server - so we are the client here. I read this post, talking about how to generate the files. The first…
user2503775
  • 4,267
  • 1
  • 23
  • 41
0
votes
1 answer

IdentityServer4 Version="4.1.1" MTLS configuration services.AddAuthentication().AddCertificate not working

Problem with Startup.cs setup, according to documentation I should add services.AddAuthentication() .AddCertificate(options => { options.AllowedCertificateTypes = CertificateTypes.All; options.RevocationMode =…
WruCode Nazw
  • 13
  • 2
0
votes
2 answers

mTLS between services in K8S

I would like to enable mTLS between services in one K8S namespace. I wonder if I can do it without using service mesh? I considered cert-manager but all the examples I've seen involved Ingress resource which I do not need as my services are not…
Revital Eres
  • 233
  • 5
  • 18
0
votes
1 answer

mTLS using Azure Function HTTP Trigger?

I'm working at building an auth token server using a Python Azure Function with HTTP trigger. The goal is to use mutual TLS (mTLS) authentication. The way it will work: Client sends http request to Function endpoint with two headers: requestor-id…
SeaDude
  • 3,725
  • 6
  • 31
  • 68
0
votes
0 answers

Why am I getting a "missing ) after argument list" when connecting to Heroku?

my MONGO_URI mongoose.connect(mongodb+srv:${process.env.DB_USERNAME}:${process.env.DB_PASSWORD}@rybnetwork.sn5ae.mongodb.net/rybnetwork, {useNewUrlParser: true, useUnifiedTopology: true }); I don't have a MONGO_URI in my dotenv. I only have…
Susie
  • 21
  • 8
0
votes
1 answer

How to test if https server my client certficate in Golang

Is there an easy way to determine if the server I communicate with from the http.Client accepted and validated my client certificate in mTLS? In my code I want to know if the remote server accepted the client certificate I put in the transport for…
Peter Zandbergen
  • 188
  • 2
  • 13
1 2 3
14
15