Abstract
A TLS Client certificate is similar to a TLS Server certificate, except that it identifies a person, or possibly a device, and is used only for Strong Client Authentication (client to server) during the TLS handshake. With a TLS Server certificate, only one certificate is needed regardless of how many people use that server. With a TLS Client certificate, each client requires a unique TLS Client certificate that identifies them. The client to server authentication takes place after the traditional server to client authentication. The CA certs for the TLS Client certificate must be installed on the server and each client, for trust to be established. It can replace password based authentication for far stronger security in most systems, but the server must support Strong Client Authentication.
This is a preview of subscription content, log in via an institution to check access.
Access this chapter
Tax calculation will be finalised at checkout
Purchases are for personal use only
Similar content being viewed by others
Author information
Authors and Affiliations
Rights and permissions
Copyright information
© 2022 The Author(s), under exclusive license to APress Media, LLC, part of Springer Nature
About this chapter
Cite this chapter
Hughes, L.E. (2022). Issue and Manage TLS Client Certificates. In: Pro Active Directory Certificate Services. Apress, Berkeley, CA. https://doi.org/10.1007/978-1-4842-7486-6_15
Download citation
DOI: https://doi.org/10.1007/978-1-4842-7486-6_15
Published:
Publisher Name: Apress, Berkeley, CA
Print ISBN: 978-1-4842-7488-0
Online ISBN: 978-1-4842-7486-6
eBook Packages: Professional and Applied ComputingApress Access BooksProfessional and Applied Computing (R0)