Skip to content

Configure Client Authentication using Certificates

Digital certificates can be used for either host and/or client authentication in Secure Shell client sessions. Certificates are not required and are not used by default. This topic describes how to configure the Reflection client for certificate authentication. For information about how to configure the Secure Shell server, consult the server documentation.

To configure certificate authentication on the client

  1. Obtain a file that contains your personal certificate and an associated private key (such as a *.pfx or *.p12 file). (You can obtain certificates from a certification authority.)

  2. Use this file to import the certificate into the personal tab of either the Reflection Certificate Manager or the Windows certificate store.

  3. From Reflection, open the Reflection Secure Shell Settings dialog box.

  4. From the General tab, make sure that Public Key is selected under User Authentication (the default).

  5. From the User Keys tab, locate the certificate you want to use from the list of available keys, and then to enable its use, select it in the Use column.