Enforcing Client Certificate Authentication on the Proxy

To enforce authentication of client certificates in a proxy firewall setup, you must enable client certificate authentication on the proxy client.


  1. From the CommCell Browser, expand Client Computers, then right-click the proxy_client_name and click Properties.
  2. Click Advanced. The Advanced Client Properties dialog box opens.
  3. Click the Firewall Configuration tab, then the Options tab.
  4. Select the Force per-client certificate based authentication option.
  5. Confirm that you want to lock down the proxy by clicking OK.
  6. Click OK to close the Advanced Client Properties dialog box.
  7. Click OK again to close the Client Properties dialog box.
  8. Right-click the proxy_client_name, then click All Tasks > Push Firewall Configuration.
  9. Click Continue to push the firewall configuration for the client, then click OK.

What to Do Next

Creating a Temporary Certificate for Client Installation