403 Forbidden Error when Configuring mTLS Authentication Flow

travis.evers · June 5, 2024, 9:54pm

Overview

A 403 Forbidden Error is thrown when configuring mTLS with the Management API endpoint. After following the steps to configure mTLS, the error looks something like this:

{
    "statusCode": 403,
    "error": "Forbidden",
    "message": "Please upgrade your subscription to use mtls.",
    "errorCode": "feature_not_enabled"
}

Solution

As mTLS is a feature of the AISE (Advanced Identity Security Entitlement) SKU, it is not part of the Enterprise package but an extra addon. The HRI feature (containing JWE/JAR/PAR/RAR/mTLS etc) is currently in Early Access, and customers should reach out to Auth0 Support to enable this feature.

Topic		Replies	Views
Auth0 Management API Error Help management-api , users	3	20	November 19, 2024
403 Forbidden error when attempting to access Authorization policy. Login successful Help management-api , clients	1	493	March 6, 2024
Delete user session 403 error "Subscription missing entitlement" "feature_not_available" Help management-api , users	3	277	July 14, 2024
Trouble configuring the delegated admin extension Help	7	3915	August 19, 2019
Auth0 Terraform provider: facing 403s when trying to modify an `auth0_client` resource Help management-api , tenants	7	696	November 29, 2023

403 Forbidden Error when Configuring mTLS Authentication Flow

Overview

Solution

Related topics