The web service plugin supports two authentication methods in the communication between a backend information system and the web service plugin interface:
username/password
TLS certificate.
This article explains how to configure the TLS certificate based authentication (2).
...
The command generates a private key (mykey.pem
) and a certificate (mycert.pem
).
Prerequisites
Before starting the actual configuration steps, the certificate ID of the backend system’s client certificate must be constructed.
The certificate ID is constructed taking the CN
, O
and C
fields, and combining them with the serial number converted to decimal value:
...
The TLS certificate based authentication can be configured by following the steps below.
Log in to the Access Point admin UI.
Create a new plugin user using the “Certificate” type.
Type in the Plugin User details - including the certificate ID.
Click OK and then Save.
Import the backend information system’s client certificate to the Access Point’s TLS truststore following these instructions.
Send a test request using the
...
client certificate. For example:
Code Block curl -E <MY_CERT>.pem --key <MY_KEY>.pem --header "Content-Type: text/xml;charset=UTF-8" --data @<MY_REQUEST_FILE>.xml https://<MY_AP_HOST>:8443/services/backend -v -k
\uD83D\uDCCB Related articles
...
Filter by label (Content by label) | |||||||||||||||||||||
---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|