Details
-
Improvement
-
Resolution: Fixed
-
Major
-
5.5.0
Description
With client certificate authentication in place, the following would be the behavior seen by the user. Let’s say a user called “user_xyz” has been added to the Couchbase server.
- First the user will have to generate a client certificate with “user_xyz” encoded in one of the subject.cn, san.uri, san.email or san.dns fields in the certificate.
- The same certificate will then have to be added to the browser.
- Then when the user points his/her browser to https://<IP>:18091 then the dashboard screen should be presented. There would be no prompt to accept username/password as the user has already been authenticated based on client certificate.
NOTE: If the client cert auth state is set to mandatory and if the browser doesn’t have the right client certificate configured then the UI will not be loaded.