FAQs: Certificates in mTLS

Common questions about certificate usage in Mutual TLS.

Mutual TLS (mTLS) is a bilateral authentication protocol that ensures both the server and client are authenticated. By verifying that both parties possess the correct private key, mTLS guarantees the identities of the systems or individuals on both ends. Additional verification is provided by the information in their respective TLS certificates.

mTLS is commonly used in Zero Trust security architectures to verify users, devices, and servers within an organization. It also helps to maintain API security.

For more details, refer to the mTLS authentication documentation.

FAQs

Do we need to order a new certificate?

Customers can choose to use either a new certificate or an existing one. On the Digibee Integration Platform, it’s necessary to provide the full Certificate Authority (CA) chain (ca.crt) when configuring an Account within the customer’s realm. Ensure the certificate doesn’t have a password; otherwise, it won’t work.

Are wildcards allowed in the certificate?

Yes, wildcard certificates are allowed.

What parameters are needed? What is the recommended bit length?

The key size should be 4096 bits, and the certificate must be signed with the SHA256 algorithm.

PreviousHow to configure mTLS on the Digibee Integration Platform NextIntegrated authentication with Microsoft Entra ID

Last updated 1 month ago

Was this helpful?