Question
Securing a REST service with 2 factor authentication
We are using Pega 7.1.6 version and can see that we do not have an option to use a Client certificate with REST services. There is no OOTB option available. Is this something that is supported in 7.2.2?
Also, we found that in this article, there is a custom option to achieve this in 7.1.8. Is this applicable for 7.1.6 as well?
https://pdn.pega.com/support-articles/securing-rest-service-using-client-certificate
Also, we are planning to upgrade to Cloud 2.1 in the next few months. So, even if the custom solution is feasible for legacy cloud and Pega 7.1.6, is it expected to work in the Cloud 2.1 architecture?
Thanks
***Moderator Edit: Vidyaranjan | Updated Categories & added SR details***
Thanks KevinZheng.
SR-B42837 was raised on this topic and we haven't received any satisfactory response.The recommendation was to reach out to the Product support community.
I see, you should tell the engineer for the SR follow my suggestion if not already.
Upon reviewing the associated SR, I see that another SR was generated and the resolution for that SR was to check out SA-14891 Securing Rest Service using Client-Certificate. Did that resolve your issue?
Accepted Solution
We eventually went ahead without 2 factor authentication as the suggested custom solution was considered to have other impacts (As mentioned in the article)
The approach quoted in the link should also work for 7.1.6. As for cloud 2.1, I suggest you create a ticket with Pega cloud team to further investigate your requirement unless you hear from our cloud team SMEs.