Securing a REST service with 2 factor authentication
We are using Pega 7.1.6 version and can see that we do not have an option to use a Client certificate with REST services. There is no OOTB option available. Is this something that is supported in 7.2.2?
Also, we found that in this article, there is a custom option to achieve this in 7.1.8. Is this applicable for 7.1.6 as well?
https://community.pega.com/support/support-articles/securing-rest-service-using-client-certificate
Also, we are planning to upgrade to Cloud 2.1 in the next few months. So, even if the custom solution is feasible for legacy cloud and Pega 7.1.6, is it expected to work in the Cloud 2.1 architecture?
Thanks
***Moderator Edit: Vidyaranjan | Updated Categories & added SR details***
Pegasystems Inc.
US
The approach quoted in the link should also work for 7.1.6. As for cloud 2.1, I suggest you create a ticket with Pega cloud team to further investigate your requirement unless you hear from our cloud team SMEs.
Capgemini
CH
Thanks KevinZheng.
SR-B42837 was raised on this topic and we haven't received any satisfactory response.The recommendation was to reach out to the Product support community.
Pegasystems Inc.
US
I see, you should tell the engineer for the SR follow my suggestion if not already.
Pegasystems Inc.
US
Upon reviewing the associated SR, I see that another SR was generated and the resolution for that SR was to check out SA-14891 Securing Rest Service using Client-Certificate. Did that resolve your issue?
Accepted Solution
Capgemini
CH
We eventually went ahead without 2 factor authentication as the suggested custom solution was considered to have other impacts (As mentioned in the article)