Hello,
I'm trying to use the validate-client-certificate policy in APIM and I get an error when adding more than 10 identity elements to the identities.
I have more than 10 customers using my API and I need to declare each of their individual certificates.
The documentation doesn't mention such limitations:
https://docs.microsoft.com/en-us/azure/api-management/api-management-access-restriction-policies#validate-client-certificate
Is there another way to do this?
My Policy looks like this
<policies>
<inbound>
<base />
<validate-client-certificate validate-revocation="true" validate-trust="true" validate-not-before="true" validate-not-after="true" ignore-error="false">
<identities>
<identity common-name="common_name1" />
<identity common-name="common_name2" />
<identity common-name="common_name3" />
<identity common-name="common_name4" />
<identity common-name="common_name5" />
<identity common-name="common_name6" />
<identity common-name="common_name7" />
<identity common-name="common_name8" />
<identity common-name="common_name9" />
<identity common-name="common_name10" />
<identity common-name="common_name11" />
</identities>
</validate-client-certificate>
</inbound>
<backend>
<base />
</backend>
<outbound>
<base />
</outbound>
<on-error>
<base />
</on-error>
</policies>
The error message is :
Error in element 'validate-client-certificate' on line 16, column 10: The element 'identities' has invalid child element 'identity'.