Authenticate user based on client certificate


I would like to know if Auth0 supports getting a user access_token based on client certificate in the same way it works with DB connections with grant_type = password.

I would expect the user (machine/proxy) to provide a certificate to Auth0 inside a header, nothing else.
Auth0 would validate the client certificate against a preinstalled certificate authority.

It the client cert is OK, then extract the username from the CN to retrieve its data and send it back in a JWT.


Hi @ggdigital,

Welcome to the Community!

The flow you describe is not currently offered. If you would like to submit a feature request that can be done here.


This topic was automatically closed 15 days after the last reply. New replies are no longer allowed.