- The Airlock Gateway (WAF) needs to be configured specially for client certificate authentication. See links at the bottom of the page.
- The configuration of Airlock IAM for client certificates is independent of form-based authentication and therefore not part of the Main Authenticator configuration.
- Go to:
Loginapp >> Authentication Settings >> Client Cert Authenticator - Choose either of the following plugins:
- Certificate Authenticator: user account is determined base on data on the user record only.
- Certificate Token Authenticator: user account is determined based on data in the token data model.
- Within the configured authenticator, refer to the plugin documentation in the Config Editor.
Further information and links
- General information: Client certificate for browser authentication (X.509)
- Airlock Gateway (WAF) configuration: Advanced configuration of Airlock Gateway for Airlock IAM