Retrieve Credentials from Context Variable Assertion

Using the Retrieve Credentials from Context Variable assertion, you can use an X.509 certificate contained in a specified context variable as if had arrived as X.509 credentials (for example, from an SSL client certificate or from a WS-Security signature). These credentials can then be used for authentication purposes in the or .
gateway83
Using the
Retrieve Credentials from Context Variable
assertion, you can use an X.509 certificate contained in a specified context variable as if had arrived as X.509 credentials (for example, from an SSL client certificate or from a WS-Security signature). These credentials can then be used for authentication purposes in the Authenticate Against Identity Provider Assertion.
This assertion can be used with the context variables created by the (Non-SOAP) Verify XML Element Assertion.
To learn about selecting the target message for this assertion, see Select a Target Message.
WARNING:
Only use certificate credentials from an entity that has proven that it possesses the corresponding private key (for example, from a digital signature or a TLS client certificate). Do not use certificates from unverified sources.
Using the Assertion
  1. Do one of the following:
    • To add the assertion to the Policy Development window, see Adding an Assertion.
    • To change the configuration of an existing assertion, proceed to step 2 below.
  2. Right-click
    <target>: Retrieve Credentials from Context Variable: <variable>
    in the policy window and select
    Credentials from Context Variable Properties
    or double-click the assertion in the policy window. The assertion properties are displayed.
  3. Enter a context variable containing an X.509 certificate. The Gateway uses this certificate as though it had arrived from conventional credential sources.
  4. Click [
    OK
    ].