Questions tagged [ssl-client-authentication]
94 questions
0
votes
1 answer
How do I get Tomcat to give me the client certificate for authentication in my Application code?
I have a java web application that supplies a REST-API for which I want to implement client certificate authentication. I am using Tomcat 9 Web Server to deploy the application as a warfile.
I only want this validation for the REST API and not for…
0
votes
0 answers
I have client auth set as "want" because some endpoints expect client to provide certificate, android 9 devices with chrome treat "want" as need
Server is setup so the client providing certificate is optional. It is needed only for 2 endpoints (so small percentage).
We have noticed that users with Android 9 and chrome have complained that visiting even just a root page it asks them to…
Mart123
- 327
- 2
- 13
0
votes
1 answer
Error in obtaining SSL Client Side Certificate through certbot tool
Here I am trying to consume API which use two way SSL Authentication. So, Here to generate Client Side Certificate, I used below mentioned 3 tools:
I set up and nginx server.
Then I tunneled it by using ngrok.
Now I am trying to obtain SSL…
Ravi Kumar
- 73
- 9
0
votes
2 answers
HTTPS client authentication self signed certificate
I would like to offer a customer a cloud service in form of a website. Now I had the idea that it would increase security enormously if this customer (several employees) also authenticated himself with a client certificate. This certificate should…
Max1829
- 11
- 1
0
votes
1 answer
Azure Application Gateway: Client Certificates headers?
I've been troubleshooting a really strange issue on my Application Gateway and my Azure Web Application behind.
A month ago, I've set up my application gateway with an web application and all seemed to work well, passing the header I need…
MrVhek
- 124
- 12
0
votes
1 answer
How the SSL/TLS CA certificate will update in my device if it is renewed from server maintainer?
How the SSL/TLS CA certificate will update automatically in client device if it renewed from website maintainer.
Actually Rooot CA certificate expiry for 1 or 2 years, after that server maintainer should go to certificate Authority renewal for…
rammohan
- 11
- 1
- 5
0
votes
0 answers
Application running on tomcat fails to pass client-auth when connecting to service
I have been banging my head on a wall for some time with this and hope somebody can explain me what am I doing wrong.
I have a tomcat server on which a application is deployed and is contacting another service. Everything works until the client…
Adrian Perkovic
- 3
- 1
0
votes
0 answers
Is HttpUrlConnection used for Https(443 port only) URLs to check it is active or not?
Actually my requirement is just to check whether Url is active or not? For that I am using HttpUrlConnection to check the Url responseCode … if I get the Response code then only I can say Url is active. But if the Url is on 443 port only and…
0
votes
2 answers
Certificate validation failed: validation of client side certificate fails when the certificate is validated
I am trying to get mutual client certification to work in Azure. I am running a web app with this configuration:
public class Startup
{
public Startup(IConfiguration configuration)
{
Configuration = configuration;
}
public…
mslot
- 4,959
- 9
- 44
- 76
0
votes
0 answers
Nginx not asking for client cert when POST method with payload
I have configured nginx for ssl-client-authentication. It is working fine for GET and POST (with out payload). But when we use POST with body, client is not passing the certificate.
Either nginx is not asking for the cert
Or the client(javascript)…
alk453
- 125
- 1
- 7
0
votes
1 answer
Caching a smart card PIN with Chromium Embedded Framework
I have a service-oriented webapp that uses IIS 8.5 and client certificate authentication via smartcard. The statically served front-end calls multiple services via AJAX. The smartcards with the certificates are protected with a PIN. When using…
Nick
- 4,901
- 40
- 61
0
votes
0 answers
Java HttpClient to implement Curl .pem file
I am trying to implement a java httpclient with SSL by reading a PKCS12 file.
The equivalent curl command is
curl -v --cacert ./keystore.pem -X POST -H "Content-Type: application/json" -d '{"username": "RAam"}' https://localhost:8080/listener
I…
RaAm
- 1,072
- 5
- 22
- 35
0
votes
1 answer
asp.net core out-of-process fails to start correctly
I'm attempting to us the RunFromPackage App Setting for an Azure Web Site.
I'm using the following stack
asp.net core (out-of-process)
Targeting .Net Framework 4.7.2
and I can no longer get my web application to run correctly. when I hit the…
McFrank
- 331
- 3
- 11
0
votes
1 answer
Setting up Traefik to require client side certificates with Let's Encrypt using CLI only
I am trying to setup Traefik to do SSL client certificates much like how I used to do it with Apache. But I can't seem to get it working correctly. I'm using Docker as well, here's the command parameters
command:
-…
Archimedes Trajano
- 35,625
- 19
- 175
- 265
0
votes
0 answers
OpenSSL Client authentication fails with expecting trusted certificate
I am following the F5 KB article to test SSL client based cert auth using openssl s_client but it keeps failing with this error:
OpenSSL> s_client -connect auc.akmlab.local:443 -key "C:\HELPAG\akmlab files\certs\admin-c-auth-ca-cert2.key" -cert…
allwynmasc
- 393
- 5
- 18