client-certificates

I am trying to implement mutual authentication for the communication between aws api gateway and my server. I want to use the client side certificates that amazon offers for authentication. I know that my server is configured correctly because previously I was using a lambda function and mutual authentication was working. I have exported the (.PEM) certificate and added it into a truststore. I have configured my Jetty server to use that truststore for authentication. I have set client-auth to :need. I know my server is set up correctly because it was working with with my self-implemented

I'm developing an hybrid cordova app which might connect to different servers. Some of them do require a client certificate. On an Android mobile the corresponding root cert + client certificate is installed. On Chrome browser I get the following dialog to choose the corresponding client certificate for the Web connection. With the cordova plugin cordova-client-cert-authentication the same dialog pops up for Http(s) requests within the WebView. My question is how to achieve a automatic certificate selection on Http(s) requests on the native Android platform without explicitly declaring the

I am trying to make a Tomcat web application use client certificate authentication for incoming connections. Everything works fine when using clientAuth=true in server.xml, however due to other applications running on the same server, we cannot use this in the production environment. Is there a way to form a web.xml document such that it forces client certificate usage for the application in the same way as clientAuth=true? It seems like using the CLIENT-CERT setting also requires you to setup a tomcat user account for each certificate which is to access your system? We need to be able to

This seems a common error but while I've found a work-around (see below) I can't pin down the reason I'm getting it in the first place. I am writing SMTP functionality into our application and I'm attempting to add SSL functionality to the working SMTP we already have. I am testing using our company's MS Exchange server and specifically the webmail option enabled on that. I can send emails internally through my code by not authenticating my connection and sending anonymously, however those emails won't relay to external email addresses due to our companies policy. Besides which I am

I'm building a client/server iPhone game, where I would like to keep third-party clients from accessing the server. This is for two reasons: first, my revenue model is to sell the client and give away the service, and second I want to avoid the proliferation of clients that facilitate cheating. I'm writing the first version of the server in rails, but I'm considering moving to erlang at some point. I'm considering two approaches: Generate a "username" (say, a GUID) and hash it (SHA256 or MD5) with a secret shipped with the app, and use the result as the "password". When the client connects

The web service I want to consume requires a client certificate. How can I send my certificate to it? To further elaborate I don't understand how to create the SecIdentityRef . In my NSURLConnection didReceiveAuthenticationChallenge I've got this conditional after ServerTrust : else if challenge?.protectionSpace.authenticationMethod == NSURLAuthenticationMethodClientCertificate { var secIdent : SecIdentityRef = ????????? var certCred = NSURLCredential(identity: secIdent, certificates: [getClientCertificate()], persistence: NSURLCredentialPersistence.Permanent) challenge?.sender.useCredential

I'm trying to connect to a service that requires a certificate for authorization. The process is that I send the service a CSR file. The service signs the CSR and sends me a certificate that I use for connection. I generated the CSR by the following command line: openssl req -new -nodes -newkey rsa:2048 -keyout cert.key -out cert.csr I took the content of the cert.csr and sent to them. They generate the client certificate and I got a PEM file back. I now try to connect using their certificate file in SSLCERT for curl() and providing the private key from cert.key as CURLOPT_SSLKEY - (which I

I'm trying to use client certificates in android. I got a .p12 file that i want to use to authenticate towards the server. I am using portecle to convert the .p12 file to a .bks file but i don't seem to get it to work. Here's the code: package com.pa1406.SECURE; import java.io.InputStream; import java.security.KeyStore; import javax.net.ssl.KeyManagerFactory; import javax.net.ssl.TrustManagerFactory; import org.apache.http.conn.ClientConnectionManager; import org.apache.http.conn.scheme.PlainSocketFactory; import org.apache.http.conn.scheme.Scheme; import org.apache.http.conn.scheme