Certificate Authentication in Data Platform v5.5.35

Flexera
Flexera
1 0 291

With the latest release of Data Platform (v5.5.35, released on October 31, 2020), we're introducing a new authentication option into Data Platform: "Certificate Authentication."

Certificate Authentication is a single sign-on (SSO) implementation which leverages Public Key Infrastructure (PKI) to authenticate and authorize users via digital certificates that can be stored and secured on a computer or on a smart card device (e.g. CAC, Common Access Card). This means that instead of supplying a standard username and password to a PKI enabled application, you present a certificate which asserts your identity.

With Certificate Authentication, enterprises that rely on PKI to authenticate users in a Windows environment where Active Directory is also deployed can now configure Data Platform to use the same PKI to accomplish the same without the requirement of proxies or other intermediary devices.

On Data Platform Config Wizard, users will see a new option, Certificate Authentication, when they configure the authentication settings:

CAC (1).png

They will be able to specify the certificate that they want to use:

CAC (3).png    Login_cer  (2).png  CAC (7).png

On the User Console side, it is designed to negotiate the authentication configuration when it establishes the initial connection to the Data Platform. Aside from providing User Name in the UPN format and change the Protocol and Port to https/443, the configuration of the User Console is unaltered:

Picture1.png

Full Release Notes for Data Platform can be found here.

The corresponding changes on User Console can be found here.