XMPP Get Client Certificate Assertion
The XMPP Get Client Certificate assertion will retrieve the remote certificate of an XMPP session and place it in a certificate context variable. This will only work if the session has already started TLS communication and the remote side presented a certificate (which may not be the case for XMPP clients).
gateway90
The
XMPP Get Client Certificate
assertion will retrieve the remote certificate of an XMPP session and place it in a certificate context variable. This will only work if the session has already started TLS communication and the remote side presented a certificate (which may not be the case for XMPP clients).Before using this assertion, ensure that at least one outgoing or one incoming XMPP connection has been defined. For more information, see Manage XMPP Connections.
Using the Assertion
- Do one of the following:
- To add the assertion to the Policy Development window, see Add an Assertion.
- To change the configuration of an existing assertion, proceed to step 2 below.
- When adding the assertion, the XMPP Get Client Certifice Properties automatically appear; when modifying the assertion, right-clickXMPP Get Client Certificatein the policy window and chooseXMPP Get Client CertificatePropertiesor double-click the assertion in the policy window. The assertion properties are displayed.
- Configure the properties as follows:OptionDescriptionSession IDEnter the ID of the session from which to get the remote certificate. You may reference a context variable.DirectionFor this drop-down list, specify in which direction the session is going from the Gateway, whether to the XMPP client or to an XMPP server.Variable NameSpecify the name of the context variable in which to place the certificate.
- Click [OK] when done.