In order to create an mTLS certificate you will need to ensure you have:
To make use of the GlobalSign DSS API’s, an mTLS Certificate is required. The mTLS Certificate (Mutual TLS) is the PEM encoded x509 certificate that has Client Authentication enabled. It is used to authenticate to GlobalSign's DSS API along with your user credentials.
To create an mTLS certificate, follow the steps below.
Click either “mTLS Certificates” from the sidebar, or “Generate An mTLS Certificate” from the dashboard.
Select one of the options for connecting to the API, depending on your circumstance.
Via Our Technology Partners: Connecting to DSS via technology partner integrations doesn't require an mTLS certificate. To learn more about partner integrations, contact your local sales team.
Directly via the API: Connecting via the API requires an mTLS certificate for secure access.
Selecting “Continue” under the “Directly via the API” option, will take you to the following page. From here you will see all API credentials, created under the account. For further information on API credentials, please see here.
Please then select one or more API credentials to link to the mTLS certificate, similar to the below – where I have selected only 1 API credential to link.
Once you have selected an API credential, the details will populate under the “mTLS Certificate Summary” sidebar on the right.
You may now click “Continue”
The following “Paste a CSR” page will be showing, which is where you need to generate a Certificate Signing Request (CSR) for your mTLS certificate.
In order to create a CSR, please follow the guide here.
Note. The CSR must be at least 2048 RSA key size.
You will now have your mTLS certificate.
Congrats you have just created and downloaded your mTLS Certificate.
Your certificate should now be ready to use to authenticate into using the GlobalSign API.
For additional information on mTLS certificates, please check out our mTLS FAQs.
For information on how to use our DSS APIs, refer to our GlobalSign DSS API documentation.