Mutual Authentication

With the Internet of Things: Edge Connect product, connected users and devices can communicate on a publish-subscribe basis within reserved namespaces. This behavior affects how clients can authenticate themselves to the edge servers, and which groups within namespaces are authorized to access topics.

How it works

With this behavior enabled, end users can authenticate their requests with valid client certificates. A valid request requires values for client identifiers or access authorization groups.

After extracting values from client certificates and storing them as variables, you can then apply any of these behaviors to transform the value: Variable Hash Transformation, Variable Regex Transformation, or Variable Substring Transformation.

Features and options

Field

What it does

Sub-options

Extract from Certificate Field

Specifies the name of the field that contains the data you want to extract.

  • subject distinguished name
  • subject alternative name
  • serial number
  • fingerprint dyn
  • fingerprint md5
  • fingerprint sha1
  • Netscape comment

Store as Variable

Specifies how to store the value.

  • Client ID
  • Authorization Group(s)


Did this page help you?