Uploaded image for project: 'Mender'
  1. Mender
  2. MEN-3114

Client only uses the provided private-key when mTLS is enabled

    XMLWordPrintable

    Details

      Description

      If mTLS is enabled in the client, then the provided private-key is used for signing the
      authorization request (for backwards compatibility with the backend).

      Hence the client must not generate a new public/private key-pair as in the old setup,
      but use the one provided in the configuration. This also means that a forced-bootstrap should not generate new keys! Never no new keys.

      Acceptance criteria:

      • Client only uses the provided private-key in a mTLS setup

      Merge to:

      feature branch

        Attachments

          Activity

            People

            Assignee:
            alfrunes Alf-Rune Siqveland
            Reporter:
            oleorhagen Ole Petter Orhagen
            Votes:
            0 Vote for this issue
            Watchers:
            1 Start watching this issue

              Dates

              Created:
              Updated:
              Resolved: