Page History
...
- Authentication is required when accessing the JS7 - REST Web Service API and when accessing the JS7 - Browser User Interface, i.e. the JOC Cockpit GUI.
- Authentication is performed by a set of JS7 - Identity Services that support the use of account/password and use of certificates.
- Single-factor authentication and two-factor authentication methods are supported.
...
- User Account/Password Authentication
- for use with the built-in account management of the JOC Cockpit, see see the JS7 - JOC Identity Service and article and further Identity Services.
- for use with an LDAP based Directory Service such as e.g. , for example, Microsoft Active Directory®, see see the JS7 - LDAP Identity Service article.
- Mutual Authentication with Certificates
- X.509 compliant certificates can be used by any client (Browser Client, REST API Client).
...
- The client (Browser Client, REST API Client) challenges the JOC Cockpit server to present its Server Authentication Certificate that is verified by the client.
- The JOC Cockpit server challenges the client to present its Client Authentication Certificate that which is then verified by the JOC Cockpit.
With the JOC Cockpit being set up for mutual authentication, certificates can be used to:
- to enforce two-factor authentication with clients having to provide a certificate and user account/password,
- to allow single-factor authentication using a certificate instead of user account/password.
Find details Details of how to configure clients and JOC Cockpit for use with certificates from can be found in the JS7 - Certificate based Authentication article.
...
Overview
Content Tools