The current Certificate Authentication module documentation primarily shows the configuration options available. But does not detail any steps on the setup and use of it, this should also include examples the values for configs.
Such things as
- how to setup CRL checking with HTTP URL
- how to setup CRL checking with LDAP
- how to setup OSCP checking
- how to just do Cert Auth with no cert checking
Current documentation does not detail how one can get the certificate from the end user/browser to AM. This can be done via adding the Cert as a header from a LB or IG or setting the container, such as Tomcat server.xml setting the Connection config: clientAuth to clientAuth=”want”