Client - CA
When enabled, Apache is responsible for validating the certificate. If the request is successfully processed by Apache and passed to SIP, SIP attempts to match the certificate to a user. If a valid user is found, authentication proceeds. If no matching user is found, the user is redirected to a page informing them that their certificate is not associated with an account and advising them to contact their administrator.
On the Client Certificate Authority (CCA) page are settings to use to enable CCA authentication.
-
On the Control Panel toolbar, click OS > client-ca.
-
Click the Enable toggle to the on position. A blue toggle indicates that the field is active.
-
Select true from the list.
-
To change from the default values, move the Status key to the enabled position and then change the default value. A blue toggle indicates an enabled field. When finished, click Stage Changes then Apply Configuration, and then Submit.
-
Now you can add a CCA to a user.