Configuring Client PKI Authentication
The ActivID AS server supports OpenID’s client strong authentication, such as PKI, with two authentication methods:
- Mutual TLS (mTLS) for OAuth Client Authentication – this method relies on the TLS protocol to validate the private key ownership, certificate path and a chain of trust
- JWT Bearer Token for client authentication – this method consists of checking the username and the JWT token signature to validate the private key ownership
Topics in this section: