SSL/TLS traffic to external applications

Key features:

  • Services can invoke SSL/TLS-protected HTTP resources, including authentication using client certificates
  • Target server certificates can be validated or ignored
  • Everything can be configured on-fly without restarts nor coding
../../../_images/path-servers-ext.png

Tasks

Uploading and updating client certificates

  • Use a dedicated form to upload concatenated pairs of PEM certificate and private key for services to use through outgoing connections (Plain HTTP or SOAP). The material cannot be secured with a password.
  • No restarts are needed after updating an already existing pair with a new one.

Uploading and updating CA certificates

  • Use a dedicated form to upload bundles of certificates, in PEM, to use for validating server certificates services will access through outgoing connections. A bundle may consist of one or more CA certificates, including any intermediate ones.
  • No restarts are needed after updating an already existing bundle of certificates.