Document toolboxDocument toolbox

mTLS - Mutual Transport Layer Security

Why mTLS

mTLS is used to access the application connected to the server. The server then notifies the client to install a certificate.

Note

Any user who wants to use Devo SOAR must have a certificate that you must download and install before enabling mTLS.

Contact your administrator to get the certificate and a one-time password.

How to Enable mTLS

To enable mTLS:

  1. Navigate to Settings > Security and select Password Policy tab.

  2. Select mTLS drop-down menu.

  3. Click on Enable mTLS certificate

  4. Click Download Certificate.
    A certificate will download to your system and a pop-up window appears with a one-time password.

🚧 Important

Make sure to note down the password to import the certificate in the browser.

  1. Click OK.

  2. Install the downloaded certificate on your machine. For information on how to install on different OS, see Install mTLS Client Certificate on Different OS.

  3. Click Enable mTLS.
    A pop-up message appears that recommends you restart your browser after enabling the certificate.

  4. Click Confirm. You have now successfully installed MTLS on your system.

How to Disable mTLS

To disable mTLS:

  1. Navigate to Settings > Security and select Password Policy tab.

  2. Select mTLS drop-down menu.

  3. Click on Disable mTLS and Confirm.

How to Revoke mTLS

👍 Only administrators can revoke the client certificate.

To revoke mTLS certificate:

  1. Navigate to Settings > Security and select Password Policy tab.

  2. Select mTLS drop-down menu.

  3. Click Revoke Certificate and Confirm to revoke the certificate.

After the certificate is revoked, the Devo SOAR-client certificate will be invalid. The administrator will download and provide you with a new client certificate which will generate a new pair of server and client certificate.