Client certificate allowlist
Use the ClientCertificateAllowlist element to define which certificates the clients are allowed to use in the communication with the server. Depending on how the infrastructure is set up, make the Server configuration in the Master or in the ServiceGateway element.
Example:
<Server>
<RequireClientCertificate>true</RequireClientCertificate>
<ClientCertificateAllowlist>
<Thumbprint>a2bc6b0d3db17c9eed17647393f079eabc95238f</Thumbprint>
<Thumbprint>a3bc8b0d7db17a9eed17523993f079eabe25938f</Thumbprint>
</ClientCertificateAllowlist>
</Server>
Note
If the RequireClientCertificate is set to true, Thumbprint elements must be specified under ClientCertificateAllowlist, or any client certificate will be allowed.