1 Answer
- Newest
- Most votes
- Most comments
0
If you get forbidden it actually sounds like you don't present you client cert when calling the API. The truststore should be in S3 and your API should point to that. Check how you present you client cert to the API you should use a call like this:
curl --key my_client.key --cert my_client.pem https://api.yourdomain.com
Check my blog on the topic, if that can give some extra hints maybe: https://jimmydqv.com/secure-api-gw-with-mutual-tls/
Relevant content
- asked 2 years ago
- asked 8 months ago
- Accepted Answerasked a year ago
- AWS OFFICIALUpdated 4 months ago
- AWS OFFICIALUpdated 5 months ago
- AWS OFFICIALUpdated 5 months ago
- AWS OFFICIALUpdated 2 months ago
- AWS OFFICIALUpdated 8 days ago