Mutual Authentication

With the Internet of Things: Edge Connect product, connected users and devices can communicate on a publish-subscribe basis within reserved namespaces. This behavior affects how clients can authenticate themselves to the edge servers, and which groups within namespaces are authorized to access topics.

How it works

With this behavior enabled, end users can authenticate their requests with valid client certificates. A valid request requires values for client identifiers or access authorization groups.

After extracting values from client certificates and storing them as variables, you can then apply any of these behaviors to transform the value: Variable Hash Transformation, Variable Regex Transformation, or Variable Substring Transformation.

Features and options

FieldWhat it doesSub-options
Extract from Certificate FieldSpecifies the name of the field that contains the data you want to extract.
  • subject distinguished name
  • subject alternative name
  • serial number
  • fingerprint dyn
  • fingerprint md5
  • fingerprint sha1
  • Netscape comment
Store as VariableSpecifies how to store the value.
  • Client ID
  • Authorization Group(s)