carloslau | Posts: 9

Enable 2-way SSL for all transactions

0 votes

Hi OneSpan Support Team

We're looking to enable 2-way SSL between our application and OneSpan using the Java SDK. Can you please provide some guidance on:

- steps required to enable 2-way ssl on a OneSpan account
- code examples on how to secure the eslClient when making a call to OneSpan, the event listener
 

Regards,

Carlos


Duo_Liang | Posts: 3776

Reply to: Enable 2-way SSL for all transactions

0 votes

Hi Carlos,

 

Please kindly fill in a support ticket ([email protected]) because OneSpan Sign only enables 2-way SSL on a request basis. Along with the ticket, please supply:

- the account email

- environment (sandbox vs production, CA or US)

- your public certificates, including the whole chain of ROOT, INTERMEDIATE, final (Please do not include your Private Keys)

The 2 way ssl is deployed to the 8443 port (https://sandbox.esignlive.com:8443), so you may also want to block calls through port 443 for the account

 

In terms of the Java programming, because I haven't tested it out myself, so I can only provide some of my thoughts and understandings:

-when making a call using eslClient

(1)you need to specify port 8443 after the API url

(2)you may also need to override the SDK source code (Client.class) regarding to SSLContext, and specify your identityKeyStore and trustKeyStore there

-event listener

From the best of my knowledge, I don't think the callback notifications are sent over 2-way SSL, you can mention it in your ticket and ask for confirmation as well.

 

Duo


Hello! Looks like you're enjoying the discussion, but haven't signed up for an account.

When you create an account, we remember exactly what you've read, so you always come right back where you left off