-
Title
Extra logging for A2A Requests Certificate Failures -
Description
Intermittent issue with A2A authentications where sometimes SPP fails to validate the certificate presented by the client.
The certificate was issued by internal private PKI, and internal validation via CRL and OCSP is working correctly. The only log related to these failed events is the following:
[LOG TIMESTAMP] The client certificate is not valid. Subject: CN=[COMMON NAME] O=[COMPANY], C=[COUNTRY] Not Before: [DATE NOT BEFORE] Not After: [DATE NOT AFTER] Thumbprint: [THUMBPRINT] Issuer: [ISSUER], O=[ORGANIZATION]., L=[LOCATION], C=[COUNTRY] {ApiKeyAuthenticationProvider.AuthenticateRequestAsync}
Is there any way to increase the log detail to see what is specifically failing? The problem resolves on its own some time later, without making any changes (neither in SPP nor in PKI).
-
Resolution
STATUS:
Enhancement Request # 649535 was created for consideration in a future version of SPP subject to successful QA testing and Product Management approval.
-
Change Request
649535