AnsweredAssumed Answered

Authenticating a client cert.

Question asked by StPaulPete on Jun 7, 2016
Latest reply on Jun 21, 2016 by kristen.palazzolo

Does anyone have an example or using a 'Require SSL Transport with Client Auth' assertion, then a 'Authenticate User or Group' to check the cert.  The former assertion's documentation says you can do this, but the latter doesn't mention it.  What I want to do is collect the cert information in the require ssl.., then just check to make sure it actually comes from a certain organization (url, etc.).  Basically, we have a service we want to restrict to only one client organization.