Al usar AWS re:Post, aceptas las AWS re:Post Términos de uso
AWS re:Postre:Post

ALB mTLS only on selected endpoints

0

Is it currently possible to enable mTLS on Aplication Load Balancer only for selected endpoints and not everything under used domain?

New ALB mTLS feature: https://aws.amazon.com/blogs/aws/mutual-authentication-for-application-load-balancer-to-reliably-verify-certificate-based-client-identities/

Etiquetas
Balanceador de carga de aplicaciones
Idioma
English
Adrian
preguntada hace 2 meses151 visualizaciones
1 Respuesta
0

Enabling mTLS selectively for specific endpoints would rely on configuring listener rules that direct traffic based on the request path or host header to different target groups. While the ALB's mTLS feature is designed to authenticate client certificates at the listener level, the specificity of applying mTLS to certain endpoints may need to be managed through application logic or additional proxy layers within your architecture that can inspect and enforce authentication at a more granular level.

For ref: https://docs.aws.amazon.com/prescriptive-guidance/latest/patterns/configure-mutual-tls-authentication-for-applications-running-on-amazon-eks.html

If this has answered your question or was helpful, accepting the answer would be greatly appreciated. Thank you!

profile picture
EXPERTO
Mina Gobrial - OptimeCloud
respondido hace 2 meses
profile picture
EXPERTO
Giovanni Lauria
revisado hace 2 meses

No has iniciado sesión. Iniciar sesión para publicar una respuesta.

Una buena respuesta responde claramente a la pregunta, proporciona comentarios constructivos y fomenta el crecimiento profesional en la persona que hace la pregunta.

Pautas para responder preguntas

Contenido relevante