Solved: Self signed cert for 2-way SSL

rovyas · 08-11-2015 07:26 AM

Hi,

Will the self signed cert of target uploaded on Apigee platform will work or will it have any CA issues.

I am asking 2 way SSL at Southbound

Thanks,

Rohit Vyas

Report Inappropriate Content

Self signed certificates can be uploaded on Edge for 2-way SSL communication at Southbound. Ref following docs: http://apigee.com/docs/api-services/content/keystores-and-truststores

Let us know how it goes.

Cheers,

Rajesh Doda

gnanasekaran

yes, It will work - as long as your target trusts the self signed client cert -

You need to add Server's cert to Apigee truststore [follow the doc @rdoda posted]

and Apigee's client cert to Target's truststore [this should be in your target configuration]

and setup Apigee's Keystore with private key, client cert

Report Inappropriate Content

Self signed certificates can be uploaded on Edge for 2-way SSL communication at Southbound. Ref following docs: http://apigee.com/docs/api-services/content/keystores-and-truststores

Let us know how it goes.

Cheers,

Rajesh Doda

gnanasekaran

yes, It will work - as long as your target trusts the self signed client cert -

You need to add Server's cert to Apigee truststore [follow the doc @rdoda posted]

and Apigee's client cert to Target's truststore [this should be in your target configuration]

and setup Apigee's Keystore with private key, client cert

Report Inappropriate Content

Hi @Roda,

I am following the post to upload keystore

but I am getting below error while uploading keystore.

I have used certificates present at Admin > free trial

I m not able to identify which private key need to be used

{
  "code": "messaging.config.beans.InvalidKeyFile",
  "message": "Invalid key file : {myKey}.pem",
  "contexts": []
}

umannggoel

I believe you are using apigee-free trail account.

In that case you don't have 2 way ssl facility.