https://community.appian.com/discussions/f/integrations/21467/adp-ssl-certificate-usage-in-integrationsI have a .pem and .key file provided by ADP. I have uploaded to the Admin Console under &quot;Certificates&quot; --&gt; &quot;Trusted Server Certificates&quot;, when I add it to the &quot;Client Certificates&quot; I get a error for missing key file even though I&#39;m not sure how to adden-USTelligent Community 12https://community.appian.com/thread/110430?ContentTypeID=1Mon, 03 Apr 2023 14:10:48 GMTd3a83456-d57b-489c-a84c-4e8267bb592a:a7282694-4370-49af-b78f-d124ce713381Stefan Helzle<p>I can&#39; tell, but when both certs point to the same server, there might be a conflict. As certificates are a platform matter, I highly recommend to set up governance processes to prevent such issues.</p><div style="clear:both;"></div>https://community.appian.com/thread/110419?ContentTypeID=1Mon, 03 Apr 2023 13:27:37 GMTd3a83456-d57b-489c-a84c-4e8267bb592a:4d1fa651-4074-4446-8f79-619ce36508a3duyp0002<p>Good morning Stefan,</p> <p>There are two certificates that are uploaded by 2 different project teams. When there are one cert, it&#39;s working fine. When there are two certs, all of our API calls fail because of the 403 issue, Client Certificate.&nbsp;</p> <p>Do you know what might be the issue? The two certs include the url within the cert as well.</p><div style="clear:both;"></div>https://community.appian.com/thread/109316?ContentTypeID=1Tue, 14 Mar 2023 10:12:35 GMTd3a83456-d57b-489c-a84c-4e8267bb592a:35223c93-bfd8-4bcd-916a-bc02791d628bStefan Helzle<p>The validation is done on client side only. You have to make sure to use a certificate that the client can validate.</p> <p><a href="https://en.wikipedia.org/wiki/Chain_of_trust">en.wikipedia.org/.../Chain_of_trust</a></p><div style="clear:both;"></div>https://community.appian.com/thread/109315?ContentTypeID=1Tue, 14 Mar 2023 10:10:00 GMTd3a83456-d57b-489c-a84c-4e8267bb592a:e0149c96-89cc-4186-9beb-b3a7a85f8f26natasav<p>Hi,</p> <p>what we won&#39;t, simple the certificate which is public to be validate on a first open of the file, so no activity should be done on a client reader same as if it was signed using adobe.</p> <p>We try to set up on tomcat by editing server.xml file and also import certificate using certlm console on a windows server but the result is the same.</p> <p></p> <p>Any suggestion how to continue?</p><div style="clear:both;"></div>https://community.appian.com/thread/109313?ContentTypeID=1Tue, 14 Mar 2023 09:49:58 GMTd3a83456-d57b-489c-a84c-4e8267bb592a:c4020405-1c39-48a7-b6dd-7298605e53faStefan Helzle<p>What does &quot;client side&quot; mean? The client tries to validate the chain of certificates. If the top most certificate is a trusted one, you are good.&nbsp;That top most certificate must exist at the client. Either by a corporate setup if the company uses a private certificate chain, or a public one if you bought the certificate you use in Appian from a public provider.</p><div style="clear:both;"></div>https://community.appian.com/thread/109308?ContentTypeID=1Tue, 14 Mar 2023 09:16:33 GMTd3a83456-d57b-489c-a84c-4e8267bb592a:cb928362-9b99-45a4-b96a-02a1c749c629muhammedk<p>Regarding the &quot;Trusted Server Certificates&quot; issue, we are using &quot;Sign PDF Document&quot; plug-in for signing PDF document with corporate certificate (pfx). <br />Is there a way to make the certificate trusted, without doing anything on client side (Adobe Reader)?<br /><img src="/resized-image/__size/320x240/__key/communityserver-discussions-components-files/18/pastedimage1678785394163v1.png" alt=" " /></p><div style="clear:both;"></div>https://community.appian.com/thread/83852?ContentTypeID=1Tue, 20 Jul 2021 14:19:05 GMTd3a83456-d57b-489c-a84c-4e8267bb592a:540e4693-fbb3-44dc-95f8-b78a2b3af6fcStefan Helzle<p><a href="https://docs.appian.com/suite/help/21.2/connected_system_authentication.html">https://docs.appian.com/suite/help/21.2/connected_system_authentication.html</a></p> <p><a href="https://docs.appian.com/suite/help/21.2/Appian_Administration_Console.html#client-certificates">https://docs.appian.com/suite/help/21.2/Appian_Administration_Console.html#client-certificates</a></p> <p>I think the client cert needs to be a combined file.</p><div style="clear:both;"></div>https://community.appian.com/thread/83847?ContentTypeID=1Tue, 20 Jul 2021 14:09:34 GMTd3a83456-d57b-489c-a84c-4e8267bb592a:5a43a985-f15c-420b-b6eb-041ce42088b3here2learn<p>I do not, this is the first one I&#39;ve used. With Appian is not as straightforward as there is no documentation for this case use.&nbsp;I&#39;ve set it up with Postman but there are examples for its usage so it was much easier.</p> <p>#1: I believe the certificate is used to authenticate the client to the server. I&#39;m assuming ADP would use this methodology. Why do I get the missing key error? Am I suppose to use openSSL to create a combo file such as a .csr or a .pfx (which I have already but when I upload it does not take it and wants specifically a .pem file)? I do have a .key file as well, but I don&#39;t see an option to add it along with the .pem file.</p> <p>#2: Understood.</p> <p>#3: I figured it would be an Appian function that would be called in the initial setup when it was called, but makes sense.</p> <p>#4: The token that the Token Request Endpoint returns in order to use for every API call, but I see what you mean now.</p> <p>Thank you for the quick response&nbsp;</p><div style="clear:both;"></div>https://community.appian.com/thread/83841?ContentTypeID=1Tue, 20 Jul 2021 13:43:21 GMTd3a83456-d57b-489c-a84c-4e8267bb592a:d55d47e6-6bbd-46b4-bdfe-008e190afeadStefan Helzle<p>Do you have any experience using SSL certificates?</p> <p>1) Depends on whether you use the certificate to authenticate the client to the server. If this is the case then it must go to &quot;Client Certificates&quot;. The message body is created in the integration.</p> <p>2) Yes</p> <p>3) This is done automatically by matching the url in the certificate to the server you call.</p> <p>4) Which token? You would add it in the integration as a query parameter, a header or in the body.</p><div style="clear:both;"></div>