How do I validate whether the client certificate I have works with the API Mediation Layer #3343

balhar-jakub · 2024-03-05T10:42:54Z

balhar-jakub
Mar 5, 2024
Maintainer

I created or got a certificate created by my certificate authority.
What is the easiest way to validate whether the client certificate will work correctly with the given API Mediation Layer instance and how do I debug what is wrong with it?

achmelo · 2024-03-05T15:16:53Z

achmelo
Mar 5, 2024
Maintainer

A good place to start is to get information from the server about accepted CA names using openssl
openssl s_client -connect host:port -prexit
this would among other information print: Acceptable client certificate CA names
In case your CA is among the list, use cURL to call gateway login endpoint
curl -v -c jwt.txt --key ./cert.key --cert ./cert.pem -X POST 'https://<host>:<port>/gateway/api/v1/auth/login' -H 'accept: */*' -H 'Content-Type: application/json'
If curl fails to obtain JWT, then enable gateway debug logs, rerun curl request and search for keywords "x509" or "NativeMapper"

0 replies

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

How do I validate whether the client certificate I have works with the API Mediation Layer #3343

Uh oh!

{{title}}

Uh oh!

Replies: 1 comment

Uh oh!

{{title}}

Uh oh!

Select a reply

Uh oh!

How do I validate whether the client certificate I have works with the API Mediation Layer #3343

Uh oh!

balhar-jakub Mar 5, 2024 Maintainer

Replies: 1 comment

Uh oh!

achmelo Mar 5, 2024 Maintainer

balhar-jakub
Mar 5, 2024
Maintainer

achmelo
Mar 5, 2024
Maintainer