Stack Overflow
Stack Overflow

Questions tagged [ssl-client-authentication]

94 questions
1
vote
1 answer

AWS API Gateway MTLS client

Does anyone know if the following feature request is now available on AWS or possible work around? AWS API Gateway MTLS client auth
Adigun Gbenga
  • 37
  • 1
  • 7
1
vote
0 answers

Tomcat is not picking up the keystore

I am setting up the tomcat server which communicate with external system through SOAP web services(I am using the external system stubs and apache Axis2 library for that). The external system is secured with ssl client/server authentication. The…
Prasad Parab
  • 437
  • 1
  • 7
  • 26
1
vote
0 answers

Forward Authentication with X-Forwarded-Ssl-Client-Cert header for authentication server

Passing the TLS client certificate to a backend using traefik.frontend.passTLSClientCert.pem=true works perfectly - but if the client request is passed to an authentication server (entryPoints.http.auth.forward), the client certificate is not sent…
pdbs
  • 11
  • 3
1
vote
1 answer

WCF Client with both Basic and Client Certificate Authentication

I am trying to integrate with a Web Service end point which require Basic and Client Certificate for authentication using WCF. I tried below different setting based on suggestions online but still I am receiving "Could not establish secure channel…
Noor Mohamed
  • 11
  • 1
1
vote
0 answers

Key Usage and Extended Key Usage certificate extension values should be required in client authentication

Anyone knows in client authentication, what are the Key Usage and Extended Key Usage purposes we should validate? As per the specification in [1]: "Extended Key Usage" is not necessary and which is configured in addition to or in place of the basic…
Indunil Rathnayake
  • 31
  • 2
1
vote
1 answer

Why HttpWebRequest.ClientCertificates is a collection

I'm curious to know why HttpWebRequest.ClientCertificates is a collection? As far as I know, only one client certificate can be used (Is this merely true?) in client authentication. An example of an application uses multiple client certificates,…
Sency
  • 2,818
  • 8
  • 42
  • 59
1
vote
1 answer

Digital certificates in chrome

I have the following case in a web application of mine. The usual browser that the user uses is Chrome. I use digital certificates that users have cryptographic cards that they insert into a card reader. To log in to the application, basically users…
Víctor
  • 13
  • 2
1
vote
2 answers

Jetty: How to validate SSL client certs in application code?

I have a multi-tenant webservice which I want to use mutual SSL/TLS authentication as well as user authentication. This means that I need to resolve the user and the user's allowed certs, which can only occur after the SSL connection has been…
Alastair McCormack
  • 26,573
  • 8
  • 77
  • 100
1
vote
1 answer

Apache Client Authentication : Certificate Verification: Error (2): unable to get issuer certificate (SOLVE)

I am trying to configure a server with client authentication on a directory and Certificate Revocation List (crl). I succeeded once to make the client client authentication works but is is not anymore and I never succeeded in making the revocation…
Vtin
  • 71
  • 1
  • 8
0
votes
0 answers

Sending a HTTPS-Request with Client Certificate from Azure Function to external Webserver

I am starting to get a little bit desperate. When sending an HTTPS-Request from my local machine using the following code, everything works fine and I get my expected response from the webserver. # Get the certificate as secret (includes public and…
ABF
  • 57
  • 9
0
votes
0 answers

Using a certificate from an Azure Key Vault to authenticate a Powershell WebRequest with

I have an Azure KeyVault that holds a .pfx-Client Certificate that I need in order to authenticate a WebRequest sent from an Azure Function to a third party Web Service. When I conduct this WebRequest from my local machine using the following code…
ABF
  • 57
  • 9
0
votes
0 answers

How do you see a client authorization certificate in Chrome devtools?

Is there a way to see a client authentication certificate in devtools? While Chrome asks me what cert I want to send, I don't see it in the headers anywhere. I assume this is because the TLS setup is handled internally in some way and may not appear…
Grant Curell
  • 1,321
  • 2
  • 16
  • 32
0
votes
1 answer

Can I use a non-exportable Certificate from Azure Key Vault for HTTPS Client Authentication?

I work with web services / APIs which use HTTPS Client Certificates to do authentication. I currently load the certificate, including private key, from Windows cert store and pass that to HttpClient. var store = new X509Store(StoreName.My,…
Murray Grant
  • 3
  • 1
0
votes
1 answer

Postman gives l:SSLV3_ALERT_CERTIFICATE_UNKNOWN:../../../../src/third_party/boringssl/src/ssl/tls_record.cc:594:SSL alert number 46

I have an endpoint which is secured with client authentication(HTTPS). To test that locally, i have my own certificate signed my own CA(test, I followed this guide to create test cert and test CA [2]). I have imported cert and root ca to…
Ratha
  • 9,434
  • 17
  • 85
  • 163
0
votes
1 answer

Self Hosted Asp Net Core Web server, client authentication with self-signed certificates

I am testing a self-hosted Asp Net Core Web server (Kestrel), and I am struggling with the client authentication using self-signed certificates. This is my startup code WebApplicationBuilder webBuilder = WebApplication.CreateBuilder(); var…
RickyTad
  • 281
  • 1
  • 3
  • 15
1 2 3
4
5 6 7