Skip to main content

Securing MarkLogic Server

Creating a MarkLogic Server User with an External Name

To configure certificate-based user authentication for user, newUser1, as a MarkLogic Server user with an external name, follow these steps in the Admin Interface:

  1. Click Security in the left tree menu.

  2. Click Users.

  3. Click the Create tab. The User Configuration page appears.

  4. In the User Name field, enter newUser1.

  5. In the External Name field, enter the entire Subject field from the example shown in User Certificate Example.

    Screenshot of the User Configuration page

  6. Click Security in the left tree menu.

  7. Click External Security.

  8. Click the Create tab at the top of the External Security Summary window.

  9. In the New External Security object window, name the External Security object and select Certificate for Authentication.

    Screenshot of the New External Security page

  10. Scroll down to the bottom of the External Security object configuration page and select Show in the SSL Client Certificate Authorities section.

    Screenshot of Show in the SSL Client Certificate Authorities section of the New External Security page

  11. Select the CA certificate you configured in CA Certificate (User Cert Signer) Import from Admin Interface.

    Screenshot of where to select the CA certificate that you configured in the SSL Client Certificate Authorities section of the New External Security page

  12. Return to the App Server configuration page and select the External Security object you just created from the External Securities pull-down menu.

    Screenshot of where to select this external security object on the App Server configuration page
In this section: