Questions tagged [mtls]

Use for mutual TLS, a technology to enhance network security.

mTLS, or mutual TLS is common on Zero Trust Networking architectures to increase security in internal networks, especially when deployed in a cloud environment.

mTLS is often implemented with a Service Mesh in a Kubernetes cluster.

222 questions

votes

1 answer

Istio no matches for kind PeerAuthentication when following mtls migration steps

I keep getting : no matches for kind "PeerAuthentication" in version "security.istio.io/v1beta1" when I'm trying to follow steps describe here :…

security mtls

asked Mar 17 '20 at 18:23

Julie Nocq

votes

1 answer

"SSLHandshakeException: Error signing certificate verify" after certificate update

I have a SpringBoot 2 application, running in Tomcat 8.5 with Java8 Runtime. It is is using a JKS Keystore for two different certs/keys which are both used by the application for mutual TLS (mTLS). Since we retrieved a new version of the certificate…

java ssl mtls

asked Feb 20 '20 at 15:13

Patrick

votes

1 answer

Why forwarding a Host Header from the previous request with mTLS in Istio returns 500?

So I had a working mTLS service mesh until one of the services got updated with some header manipulation logic. This logic was getting the headers from the request the service got, and then adding those headers to the request this service was making…

istio mtls

asked Sep 20 '19 at 07:47

codiaf

-1

votes

0 answers

Where can I get free TLS certificate for mutual authentication?

An API that I need to use requires mTLS (mutual TLS) for connection. As I understand, my client application needs its own certificate to authenticate in the API server. I know that "Let's Encrypt" offers free TLS certificates, but they requires to…

ssl ssl-certificate mutual-authentication mtls

asked Aug 31 '23 at 15:20

pkalinow

1,619
1
17
43

-1

votes

1 answer

Add mTLS support to existing infrastructure

Let's discuss about possible approach how to add mTLS (mutual TLS) support to existing infrastructue. But, firstly, let's describe the existing infrastracture. There is a microservice-based system that handles http requests and does any business…

kubernetes architecture gcloud mtls

asked Aug 30 '23 at 09:30

Gilgamesz

4,727
3
28
63

-1

votes

1 answer

How to setup nginx proxy server on server A proxying to server B with mTLS

My scenario is the following: Server A is behind domain.a.com and is protected with mTLS on AWS API Gateway simulating a third party system not maintained by me Server B is behind domain.b.com behind AWS public application load balancer and has…

nginx proxy mtls

asked Aug 26 '23 at 08:03

malaquf

-1

votes

1 answer

Django Web Application Mutual authentification on development server

I am working on an application that needs mutual authentication; there are needs to test it on the development server I have so far got all the keys, server and client, the server can be authenticated, what i don't know is how to request the…

django authentication mtls

asked Mar 29 '23 at 16:52

ron

-1

votes

1 answer

AWS API Gateway MTLS

I have a problem with the implementation of an API Gateway on AWS with Mutual TLS authentication, I have a custom domain attached to the API Gateway, the instance is configured with load balancer nginx, custom domain ex: app.sandbox.domain.com the…

amazon-web-services amazon-elastic-beanstalk mtls

asked Oct 21 '21 at 16:13

Mondly

-1

votes

1 answer

Can I have insecure GET HTTP requests whilst having MTLS securing all other HTTP requests?

I have a HTTP REST service written in golang demonstrating what I'm attempting. I want GET requests insecure and all other REST requests secured with MTLS. My implementation already uses the gin web server library so I'd like to stick with that if…

rest go ssl mtls

asked Oct 07 '21 at 19:53

James

-1

votes

1 answer

Istio: authn tls-check and external services

In my istio mesh I have configured mTLS, and I have some external-to-the-mesh and external-to-the-cluster services I am consuming: I can connect to them just fine by creating a trafficPolicy with TLS disabled, but no matter what I do I cannot get…

istio mtls

asked Oct 28 '18 at 18:30

user10571476

-2

votes

1 answer

Does HTTPS in Google Cloud Functions support mTLS using PKI?

I'm looking to serve HTTPS downloads which are authenticated in both directions using mTLS, the requests and responses being signed with certificates issued by a private CA. The purpose of this is securing OTA updates of an embedded device (I need…

google-cloud-platform https google-cloud-functions pki mtls

asked Aug 17 '21 at 08:41

Tarmo

3,728
1
8
25

-3

votes

2 answers

Best practices for inter-microservice authentication on Kubernetes?

I'm writing a service to be deployed on Kubernetes. Clients will be other services, not people, and those services may be in other namespaces or even clusters. My goals are: Authenticate the calling services Authorize the calling services Apply…

authentication kubernetes microservices mtls

asked Aug 07 '20 at 15:16

David Nesting

Prev 1 2 3

…