@ujjwalDev Firstly we apologize for the delay in response to this question.
We do not have plans to implement Mutual Auth for v1 Application Gateway at the moment. Upgrading to v2 seems like the only option to enable client certificate validation at the moment. Hope this helps. Please let us know if you have any further questions/concerns. Thank you!
@ujjwalDev GA for Mutual Auth is targeted for H2CY 2021. Regarding FD+Api Mutual auth, yes FD Mutual auth is not supported yet. Please let ne know if you have any further questions/concerns. Thank you!
Is there already a solution?
I can't find a solution for our problem:
We got API Management with Application Gateway in front.
Mutual auth should me mandatory only for specific apis (via api policy).
When accessing api management directly mutual auth works.
When accessing api management via application gateway it doesn't work ("400 No required SSL certificate was sent").
It seems the application gateway does not forward the certificates. Activating mutual auth in the application gateways SSLProfile would not work because then ALL Apis would require mutual auth.
Is there a way to solve it?
Currently I solved it with a separate Listener and Hostname for mutual auth. In combination with an redirect of the original listener and a policy in APIM which checks the OriginalUrl
Sign in to comment