Is client private key required for mutual/two way ssl? #74

KrishnaST · 2021-04-16T10:57:22Z

KrishnaST
Apr 16, 2021

My application is consuming a service which requires two way SSL. I have received public certificate(Most probably client certificate) from the vendor whose service i am going to consume. Is client private key required for mutual/two way ssl?

Hakky54 · 2021-04-16T14:51:45Z

Hakky54
Apr 16, 2021
Maintainer

If the counter party, the service which you are going to call, requires you to authenticate with ssl based on mutual-ssl than you need two files:

The certificate of the counter party, which you are going to use to mark the server as trusted server.
Your keypair also known as private key and public key.

So indeed the private key is required. I have also here an example: Integration test - mutual authentication with badssl.com

If the private key is removed from the file which is being used by client within the test, it will fail. You can give it a try 😄

0 replies

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Is client private key required for mutual/two way ssl? #74

{{title}}

Replies: 1 comment

{{title}}

{{editor}}'s edit

{{editor}}'s edit

Select a reply

Is client private key required for mutual/two way ssl? #74

KrishnaST Apr 16, 2021

Replies: 1 comment

Hakky54 Apr 16, 2021 Maintainer

KrishnaST
Apr 16, 2021

Hakky54
Apr 16, 2021
Maintainer