- Three pages have been merged to create this, does it make sense? Deborah Cross (Unlicensed). Greg will review by
...
There are 2 main security options to choose from depending on your infrastructure.
- Mutual Authentication
- Password
...
All connections to the API must be protected by encryption, i.e. plain text transmission is not permitted under any circumstances.
Authentication is performed with the combination of accountId and password fields. However, mutual SSL authentication can be used if preferred. To use mutual SSL authentication, please contact us. When using mutual SSL authentication, the customer must provide a client certificate as part of the handshake process. The client certificate can be signed by our private certificate authority, or an external CA. If an external CA is used, Edentiti needs to know which CA so that the CA certificate can be imported into the greenID truststore.
...
- Send us a certificate signing request (CSR) for your application infrastructure.
- We will generate a certificate using the CSR, pass that certificate to you and then add that certificate to our trusted list of certificates for your test or production account.
- You need to add that certificate to your application server as a client certificate.
- To test the trust has been setup, retrieve the appropriate MSSL WSDL from the server that has the certificate installed on it.
...
- a client
...
- Provide us with the client certificate that is installed on your server and the public certificate of the signing certificate authority.We will add that certificate to our trusted list of certificates for your test or production account.
- To test the trust has been setup, retrieve the appropriate MSSL WSDL from the server that has the certificate installed on it.
...