...
Info |
---|
Before starting the configuration steps, please make sure that you have you have access to the backend information system’s client certificate that’s used for TLS authentication. |
A self-signed certificate can be generated using the command below:
Code Block |
---|
openssl req -x509 -newkey rsa:2048 -keyout mykey.pem -out mycert.pem -days 365 -nodes |
The command generates a private key (mykey.pem) and a certificate (mycert.pem).
Prerequisites
Before starting the actual configuration steps, the certificate ID of the backend system’s client certificate must be constructed.
...
Create a new plugin user using the “Certificate” type.
Type in the Plugin User details - including the certificate ID.
Click OK and then Save.
Import the backend information system’s client certificate to the Access Point’s TLS truststore following these instructions.
Send a test request using the Original User and its certificate. For example:
Code Block curl -E <MY_CERT>.pem --key <MY_KEY>.pem --header "Content-Type: text/xml;charset=UTF-8" --data @<MY_REQUEST_FILE>.xml https://<MY_AP_HOST>:8443/services/backend -v -k
\uD83D\uDCCB Related articles
...