Configuring Client Certificate Authentication

Invicti supports the Client Certificate Authentication mechanism, enabling you to configure scans for websites that require Client Certificate authentication.

It is not possible to configure both Client Certificate Authentication and Smart Card Authentication at the same time.

For further information, see Configuring Smart Card Authentication in Invicti Standard.

Ensure that the selected certificate is NOT imported with strong key protection.

Client Certificate Fields

This table lists and describes the fields in the Authentication Client Certificate section.

How to configure Client Certificate Authentication in Invicti Enterprise

1. Log in to Invicti Enterprise.
2. From the main menu, select Scans > New Scan.
3. From the Authentication tab, select Client Certificate.
4. On the Client Certificate section, select the Client Certificate checkbox.

5. Select Browse to upload the certificate

6. Select a file, then select Open.

In Invicti Enterprise, client certificate files can only be added in the following formats: cer, crt, der, pem, pfx, p7b, p7r, p12, spc.

7. Select Start Scan.

How to configure Client Certificate Authentication in Invicti Standard

1. Open Invicti Standard.
2. From the Home tab, select New. The Start a New Website or Web Service Scan dialog is displayed.

3. Select the Client Certificate tab. The Client Certificate Authentication section is displayed.

4. In the Client Certificate Authentication section, check Enabled.

5. From the drop-down, select the required certificate.

6. Alternatively, select Add New to add a new client certificate. The Certificate to Install dialog is displayed.

7. Select a file.

• Click on the file.

• Select Open

Client certificate files can only be added in PFX (Personal Information Exchange) or Cert (Digital Certificate) formats.

8. Select Start Scan.