Enable Mutual Authentication
OAuth uses
mutual authentication
to provide an additional layer of security. Mutual
authentication occurs when two parties authenticate each other at the same time. A
server-to-server certificate from a certificate authority (CA) must be used for mutual
authentication. Before you can register your application, you must create one of these
supported DigitCert CAs and enable mutual authentication:- DigiCert
- DigiCert Assured ID Root G2
- DigiCert Global G2 TLS RSA SHA256 2020 CA1
- DigiCert High Assurance EV Root CA
- DigiCert SHA2 Extended Validation Server CA
- Contact support to obtain a certificate from DigiCert:https://www.digicert.com/contact-us
Follow these steps to enable mutual authentication:
- Create a new key pair and Certificate Signing Request, using a server-to-server certificate from your CA.
- Submit the Certificate Signing Request (CSR) to support for your CA and provide the required details.
- Your CA verifies your request, and if they approve it, they issue the certificate in an email to the technical contact for your account.
- Give the certificate's common name to yourNational Australia Banktechnical contact. Your technical contact adds it to theNational Australia Bankwhitelist.IMPORTANTYour certificate's common name can only contain up to 40 characters.