Client certificate authentication in the JSP-Loginapp

  • The Airlock Gateway (WAF) needs to be configured specially for client certificate authentication. See links at the bottom of the page.
  • The configuration of Airlock IAM for client certificates is¬†independent of form-based authentication and therefore¬†not part of the Main Authenticator configuration.
    • Go to:
      Loginapp >> Authentication Settings >> Client Cert Authenticator
    • 30805683.png
    • Choose either of the following plugins:
      • Certificate Authenticator: user account is determined base on data on the user record only.
      • Certificate Token Authenticator: user account is determined based on data in the token data model.
    • Within the configured authenticator, refer to the plugin documentation in the Config Editor.