...

Find details from the JOC Cockpit - Single-factor Authentication with Certificates article.

Certificates for Authentication

Clients

Certificates are available with the Client's certificate store.

• Browser Clients
  • FireFox (any platform): supports use of an individual certificate store that is available with the browser, see Options -> Privacy & Security -> Certificates.
  • Chrome, Vivaldi, Edge (Windows): supports use of the Windows Certificate Store
  • Chrome, Vivaldi (Linux): supports use of an individual certificate store that is available with the browser, see Options -> Privacy
  • Chrome, Safari (Mac OS): supports use of the Mac OS Certificate Store
• REST Clients
  • JS7 PowerShell Module (Connect-JS7): Windows, Linux, Mac OS: supports use of a Key Store (.p12); Windows: supports use of the Windows Certificate Store
  • JobScheduler PowerShell Module (Connect-JobScheduler): Windows, Linux, Mac OS: supports use of a Key Store (.p12); Windows: supports use of the Windows Certificate Store
  • Other REST Clients: depends on implementation

Certificate Encryption Algorithms

X.509 Certificates with RSA or ECDSA encryption algorithms can be used.

Certificate Management

Self-signed certificates and certificates signed by trusted root certification authorities can be used.

For use with self-signed certificates the root certificate has to be added to the Client's certificate store. Certificates from trusted root certification authorities frequently are available from a Client's key store.