X.509 Client Authentication

zerodefect · December 7, 2022, 10:45pm

I’m trying to get OIDC authentication working using X.509 client certificates. Admittedly, I’m struggling a bit.

I’m using a Direct Grant Flow (I believe) - that is I have software running out in the field, that needs to access a service behind an API Gateway.

Step #11 is throwing me off. It reads:

Set up the x509 authentication configuration by following the steps described in the x509 Browser Flow section.

Is this step truly necessary if I’m using a Direct Grant Flow? All of the steps?

Topic		Replies	Views
X.509 client cert direct grant with fallback to username/password Getting advice	0	631	June 18, 2021
Bound Access Tokens : is it also mandatory to add X.509 client certificate authentication to browser flows? Configuring the server authentication , oidc	0	460	January 10, 2022
X509 Client Certificate authentication for OIDC clients	0	797	January 27, 2022
X.509 curl Command in Docs Securing applications authentication	0	38	September 29, 2024
Request certificate in mTLS only for selected flow Configuring the server authentication , oidc	1	895	October 7, 2024