Reputation: 2558
Azure Application Gateway Not allowing Client Certificates
I have Azure API Management, configured internally and exposed to the public through Azure application Gateway. My API is secured for client certificates, it working perfectly when I test it internally. When I test it externally, I am getting an invalid certificate error. Does Azure Application Gateway block client certificates? How to allow them?
Upvotes: 0
Views: 1119
Answers (2)
Reputation: 6706
An answer from Microsoft:
We do have option for mutual authentication on Application Gateway which can allow the mutual authentication between client and Application Gateway: https://learn.microsoft.com/en-us/azure/application-gateway/mutual-authentication-overview
However this is still in preview version, which is not included in SLA. As the mutual authentication between AppGW and the APIM we double confirmed with the backend engineers, unfortunately the answer is no we do not support such a function.
Upvotes: 1
Reputation: 72171
I suspect this is not yet possible with Application Gateway: https://feedback.azure.com/forums/217313-networking/suggestions/9379902-allow-mutual-ssl-auth-on-application-gateway
Upvotes: 0
Related Questions
- SSL Cert Error in Azure Application Gateway
- Issue within certification chain using azure application gateway
- Client Certificate is not being passed on by Azure Application Gateway
- Azure Application Gateway Backend Setting Certificate error - ApplicationGatewayTrustedRootCertificateInvalidData
- client certificate validation on APIM
- Getting "403 Invalid client certificate" in Azure APIM and also from postman
- Azure Application gateway cannot upload pfx certificate
- No certificate in X-ARR-ClientCert header when called from Azure API Management
- Client certificate with Azure Application Gateway
- Certificate missing when Azure API Manager calls Azure APP Service