Client certificate allowlist

Use the ClientCertificateAllowlist element to define which certificates the clients are allowed to use in the communication with the server. Depending on how the infrastructure is set up, make the Server configuration in the Master or in the ServiceGateway element.

Example:

<Server>
   <RequireClientCertificate>true</RequireClientCertificate>
   <ClientCertificateAllowlist>
      <Thumbprint>a2bc6b0d3db17c9eed17647393f079eabc95238f</Thumbprint>
      <Thumbprint>a3bc8b0d7db17a9eed17523993f079eabe25938f</Thumbprint>
   </ClientCertificateAllowlist>
</Server>

Note

If the RequireClientCertificate is set to true, Thumbprint elements must be specified under ClientCertificateAllowlist, or any client certificate will be allowed.