Authentication using X.509 client certificates
When Spotfire Server is set up with HTTPS and is configured to require client certificates, the information from the certificates can also be used for login purposes.
This method authenticates users by using an X.509 client certificate from the Spotfire client to Spotfire Server.
These are the general steps to configure
Spotfire to use X.509 client certificates for authentication:
- Configure Spotfire Server for HTTPS; see Configuring HTTPS.
- Install client certificates on each client. For details, see the documentation provided by your operating system vendor.
- If you have not already done so, import the Certification Authority (CA) certificate(s) to the keystore; see Installing CA certificates.
- Configure Spotfire Server to require client certificates for HTTPS; see Configuring Spotfire Server to require X.509 client certificates for HTTPS.
- Configure Spotfire Server to use X.509 client certificates to authenticate users; see Configuring Spotfire Server to use X.509 client certificates to authenticate users.
- Installing CA certificates
To use X.509 client certificates for authentication, a keystore with CA certificate(s) must be placed in the installation directory. - Configuring Spotfire Server to require client certificates for HTTPS
This procedure configures the server to require a valid user certificate for all connections. - Configuring Spotfire Server to use X.509 client certificates to authenticate users
This procedure configures the server process for authenticating users with client certificates.
Parent topic: Single sign-on authentication methods