Use this guide to enable C-SSL authentication in SecureAuth IdP realm(s).
This configuration initiates a begin site that forces the browser to request a certificate before the end-user provides any information (client-side certificate) to enable access to the target resource (application, VPN, IdM tool, etc.).
1. Have a valid certificate that will be used to access the C-SSL-configured realm
This can be accomplished through another SecureAuth IdP realm (see Certificate Enrollment Configuration Steps below) or from an existing certificate (e.g. smart card)
If using a smart card certificate, the certificate chain must be imported from the card issuer to the SecureAuth IdP appliance
2. Create a New Realm or edit an existing realm to which C-SSL will be applied in the SecureAuth IdP Web Admin
3. Configure the following tabs in the Web Admin before configuring for C-SSL:
Overview– the description of the realm and SMTP connections must be defined
Data– an enterprise directory must be integrated with SecureAuth IdP
Workflow– the way in which users will access the target must be defined