user3547998
Reputation: 21
Envoy client side authetication with certificate only - no key
I am looking to configure envoy to do downstream client authentication. Basically what cloudflare did here on nginx, I need to do that in envoy. The question is since the pem has certificate only and no key, which attribute would I add the filepath too? I already have trusted_ca using a bunch our site trusts. Since cloudflare cert is custom, it probably needs another place?
Currently exploring the options. If not validation_context and not the structure defined by tls_certificates(as I dont have a private_key, I only have cert). Where else can I put it?
Upvotes: 1
Views: 174
Answers (0)
Related Questions
- pip install fails with "connection error: [SSL: CERTIFICATE_VERIFY_FAILED] certificate verify failed (_ssl.c:598)"
- Configure Nginx to forward client certificate to backend
- Java HTTPS client certificate authentication
- Which client certificate auth validations are done by NGINX for auth-tls-verify-client = optional_no_ca
- Cloudflare SSL cert throws a Security Issue
- How to configure gRPC Client communicating over TLS transport layer without server certificate?
- How to generate public certificate, private key from root certificate?
- AWS APi Gatway client side certificate with AWS Certificate manager for Elastic Beanstalk ELB