This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Log in to ask a question
Get hands-on experience with 20+ free Google Cloud products and $300 in free credit for new customers.
Log in to ask a question

Configure Mutual authentication for one proxy

Posted on 09-06-2019 08:38 AM
Not applicable
Reply posted on --/--/---- --:-- AM

Hi,

We want to enable mutual authentication for a proxy request from client. Where the certificate will be uploaded, where the key will be stored and how internally the mutual authentication mechanism works in apigee. Can anyone help me with how to do this? If any document or link is there, please share. If I have to set for all proxies, is it a good idea to do all these at apigee level or there is any alternative? Is it fine to store too many certificates at apigee Thanks...

Solved Solved
1 3 1,270
Topic Labels
Jump to Solution
1 ACCEPTED SOLUTION

Posted on --/--/---- --:-- AM
Not applicable
Reply posted on --/--/---- --:-- AM

I finally did this using keystore and truststore of apigee. Added the server certificate in keystore and client certificates in truststore. For one proxy to have mtls I created one virtual host with 2 way tls and for other created virtual host with one way ssl. Certificate management in apigee is not simple as other gateway I have used. In apigee we need full certificate chain of the client to be added to the truststore.

Also to revalidate I added certificate serial number validation in the proxy.

View solution in original post

Jump to Solution
0 Likes
3 REPLIES 3