Is it possible to create certificate-based authentication for a Web API? The pur

Certified Senior Developer
Is it possible to create certificate-based authentication for a Web API? The purpose would be for an external system to execute a Web API on our Appian cloud-based application to retrieve data on a daily basis. It was my understanding that it would have to be done with a username/password that would have to be changed regularly. Is that still true?

OriginalPostID-198437

OriginalPostID-198437

  Discussion posts and replies are publicly visible

Parents
  • Web APIs will work with any Appian supported authentication mechanism. In order to get certificate based authentication to work, you need to set up an identity provider (external to Appian), and then configure Appian to use SAML to connect to that identity provider. Appian will then forward certificate based authentication requests to an external identity provider that will process the certificate.

    HTTP Basic Authentication is a username / password based authentication mechanism. Most tools that support REST have it built in, and you should be able to find the protocol specifics by looking through their documentation. The basic idea is that the http client sends a special header with it's HTTP requests that encodes the user name and password in a specific format.
Reply
  • Web APIs will work with any Appian supported authentication mechanism. In order to get certificate based authentication to work, you need to set up an identity provider (external to Appian), and then configure Appian to use SAML to connect to that identity provider. Appian will then forward certificate based authentication requests to an external identity provider that will process the certificate.

    HTTP Basic Authentication is a username / password based authentication mechanism. Most tools that support REST have it built in, and you should be able to find the protocol specifics by looking through their documentation. The basic idea is that the http client sends a special header with it's HTTP requests that encodes the user name and password in a specific format.
Children
No Data