0 Replies Latest reply on Mar 11, 2019 12:13 PM by dauphin77

    Configuring Reverse Proxy to Request Client Certificates

    dauphin77 Enthusiast

      Hello all,

       

      Seeking some assistance in understanding the the steps/command as it pertains to configuring the reverse proxy to request client certificates. In the Configure the Reverse Proxy to Request Client Certificates steps on the VMware 6.7 site, it talks about creating a trusted client CA store. The first command (example) shows you how to create a certificate store on the PCS appliance. I do have one question:

       

      1) Is the below command simply converting my *.cer file to *.pem or is it actually creating a trusted client CA store?

       

       

      cd /usr/lib/vmware-sso/

      openssl x509 -inform PEM -in xyzCompanySmartCardSigningCA.cer >> /usr/lib/vmware-sso/vmware-sts/conf/clienttrustCA.pem

       

       

      Any clarification/guidance would be appreciated!