Previous Topic: PrerequisitesNext Topic: Setting for Special Characters within the Cookie

Administration GuideConfiguring the SPS Server SettingsGeneral Server Settings in the server.conf FileSSL Settings in the server.conf FileClient Certificate AuthenticationEnable Client Certificate Authentication

Enable Client Certificate Authentication

Configure the SPS to enable the client certificate authentication.

Follow these steps:

  1. Encrypt the password of the private key of the SPS client certificate by performing the following steps:
    1. Open the command prompt.
    2. Naviagte to the <SPS_Installation_Path>\SSL\bin location.
    3. Execute the following command:

      Windows

      EncryptUtil.bat <SPSCertificatePrivateKey_Password>

      UNIX

      EncryptUtil.sh <SPSCertificatePrivateKey_Password>

      The encrypted password is displayed.

  2. Configure client certificate authentication details in the server.conf file by performing the following steps in the sslparams section:
    1. Enter the key file name of the SPS client certificate in pkcs8 format in ClientKeyFile.
    2. Enter the encrypted password that you generated in Step 1 in ClientPassPhrase.

    The client certificate authentication is configured in the server.conf file.

  3. Configure the proxyrules.xml file to forward the client requests to the configured web server.
  4. Restart the SPS.

    Client certificate authentication is enabled between the SPS and the web server.