AnsweredAssumed Answered

Mutual TSL between Api Gateway and Client

Question asked by herley on Jan 25, 2018
Latest reply on Feb 1, 2018 by nyawe01



Can you please help me with a tutorial to configure the communication with tsl mutual between the gateway (as a server) and the client through certificates.

I am creating a self-signed certificate on the client and import it into the gateway. Then I export the gateway certificate and import it into the client.
Then I create a user in the FIP with the same CN of the imported certificate. I enable port 9443 for client authentication to be mandatory. I add the assertion "Require SSL or TSL Transport with Client Authentication" and then "Authenticate Against Identity Provider".

After the previous steps the gateway is allowing to make requests from clients that do not have the installed certificates and should not be authorized.

The tests I'm doing with postman.

I appreciate your help.