Solved: How can I proxy a target secured by PKI?

Report Inappropriate Content · 09-20-2016 12:40 PM

I have a target that I want to proxy that is protected by a PKI certificate. I want to create a proxy that is protected by oauth from Apigee (already have this working and other Products that are successfully secured behind oauth). How can I preform the PKI authentication inside of my proxy? Goal here is to standardize the authentication my client application needs to do. One product is secured by api key, another by basic auth and now this one via PKI. How can I load the PKI in the proxy and present it to the target api?

Thanks!

DChiesa

I think you want to configure the TLS between the target and the back end.

This is described in detail , here.

Basically, you configure your target like this:

<TargetEndpoint name="default">


  <HTTPTargetConnection>
    <SSLInfo>
      <Enabled>true</Enabled>
      <ClientAuthEnabled>true</ClientAuthEnabled>
      <KeyStore>myKeystore</KeyStore>
      <KeyAlias>myKey</KeyAlias>
    </SSLInfo>
    <URL>https://myservice.com</URL>
  </HTTPTargetConnection>


</TargetEndpoint>

You will need to load the client cert and key into Edge. That process is described on the above page.

Good luck!

View solution in original post

DChiesa