Hi,
Is there anyway for authenticating the client via HTTPS we request for the client certificate and we do not do any mapping of client certificate with client id on IS?
For HTTPS Authentication you need to install client CA and public certificate and also mapping of client pub certificate from IS console.
(All the steps you suggested in another issue for a user :D)
Thanks
-Hemendra
Hi Hemandra,
Thanks for your reply. I am well aware of the process mentioned by you. My question is, if it is possible for SSL hand shake that certificate is not mapped to any user and still service will be invoked after SSL handshake.
Basically I came to know that one of our client is doing in that way but i do not rely on their wordings. As in test they are doing same process but not getting success but in production they said they are having similar setup and it is successful.
Hi Vikas,
I am not sure about this, but as per admin guide mapping is required.
Didn’t tried the way as per your request but i think u can give a test try.
May be some others can throw more light on this.
Thanks
-Hemendra
Hi,
Now I came to know how it is working.
Basically SSL handshake is going on but as certificate is not mapped to any user in that case it will recognize client as ‘default’ user. As default user is not having any privileges so you need to change the invoked service Execute ACL to ‘Anonymous’ and then it will work.
I believe this setups is OK if you have only one trading partner.
Correct me if i am wrong.
Hi Vikas,
I think you are right. Nice explanation. We can give a try to check this.
Thanks
-Hemendra