Table of contents
- Introduction
- Guide
Introduction
A client certificate is a digital certificate that verifies the identity of a client, usually an application or a user, to a server. It is a key component of mutual TLS (Transport Layer Security), in which both the client and the server authenticate each other.
There are many systems, applications, and platforms across various industries that use client certificate authentication for secure API access. For example, financial services, healthcare, government and public sector, and so on.
For example, in banking, ABN AMRO requires us to use this authorization method when requesting the OAuth 2.0 access token.
Guide
Step 1: Go to HTTP authentications > Create a new HTTP authentication.
Step 2: Select “Custom client certificate” from the list of Settings.
Step 3: Copy and paste the certificate in the Client certificate field.
Step 4: Copy and paste the private key in the Client key field.
Step 5: Fill in the password if the private key is protected by a password.
Step 6: Save the HTTP Authentication
Step 7: You can then attach this HTTP authentication to any HTTP requests that require the client certificate, including a configured OAuth 2.0 HTTP authentication.