[keycloak-user] difference between the x509 Client Certificate authentication and X509 Client Authenticator
Sebastien Blanc
sblanc at redhat.com
Wed Oct 3 09:02:59 EDT 2018
You're confusion is probably around the term "Client". The existing X509
feature was for *user* authentication, the new feature is to authenticate a
Keycloak *Clients* (meaning an application/service ) with x509 certificate,
like we already did with secret or Signed JWT (
https://www.keycloak.org/docs/latest/server_admin/index.html#_client-credentials).
On Wed, Oct 3, 2018 at 2:33 PM Meissa M'baye Sakho <msakho at redhat.com>
wrote:
> Hello Everyone,
> I'm wondering about the difference between the newly released featureX509
> Client Authenticator in the 4.3 version and the x509 Client *Certificate*
> Authentication that has been released for a while.
>
> I know that the x509 Client *Certificate* Authentication when enabled will
> allow user to authenticate upon a client certificate. They will then don't
> need to give a login/password.
>
> But I don't see the x509 Client Authentication description somewhere.
>
> Any input?
> Regards,
> _______________________________________________
> keycloak-user mailing list
> keycloak-user at lists.jboss.org
> https://lists.jboss.org/mailman/listinfo/keycloak-user
>
More information about the keycloak-user
mailing list