MTLS configuration and installationSummarymTLS configuration and installation Certificate Generation Before you begin Note: Skip You must skip this procedure if you already have mTLS certs configured. Procedure Go to the site https://keystore-explorer.org/downloads.html. Download and install the setup file. Keystore explorer. Open Keystore explorer and click Create a new KeyStore. Select JKS from the New KeyStore Type dialog and then select OK. Right-click the pane and select Generate key Pair. In the next window, keep the default options and click OK.In the next window, click the book icon in the Name field. Enter the details, and then click OK. Provide an alias name and password for key pair. The entry for the key is generated. Right-click this key and select View Details. Select Certificate Chain Details and the Certificate Details dialog for the certificate is displayed. Select the PEM button and then click Export. Save as a .pem file. This file is used to upload in an instance for creating CA chain record and user record. Right-click the key entry on keystore explorer, and then select Export > Export Key Pair. Provide a password and click Export in the Export Key Pair from Keystore Entry dialog. The file is saved as .p12 file. The .p12 certificate file is used in RPA Runtime to authenticate. Configure Instance Login to the instance. Navigate to plugins and install ‘Certificate Based Authentication’ plugin. Refresh instance and search for CA certificate chain in the ‘Certificate Based Authentication’ app. Create a new CA certificate chain record. Provide name and attach .PEM file and submit it. Wait for the Publish status to become Active. Note: It may take approximately 10 minutes or more for the status to get active. Search for User to Certificate Mapping and then select New. Provide the name in the Name field. In the User field, select the user who has the RPA robot role. Attach the .PEM file and select Submit. Certificate Installation Removing the certificate Before you begin Perform the following steps if the same certificate is already installed on the machine. Procedure Launch Command Prompt and run it as an administrator. The command prompt window is displayed Execute the command certlm to open the Certificates window. Expand the Personal Click Certificates to view the list of available certificates. Right-click the certificate and then select Delete to delete the certificate. Click Yes on the Certificates alert message. The certificate is deleted from your machine Installing the certificate Procedure Double-click the certificate to start the installation. Select Local Machine and click Next Click Next with the default option in the File Name field. Enter the password and click Next Note: Ensure that you do not check the Mark this key as exportable option. Click Next in Certificate store with the default option. Click Finish. Click OK in the Certificate Import Wizard pop-up. Adding the user Procedure Right-click the installed certificate and select All Tasks > Manage Private Keys. The Permissions window is displayed. Click Add on the Permissions window. The window to add user is displayed. In the Enter the Object names to select field, enter the user account which robot login to the machine and then click Check Names. Note: User account which is added in RPA Hub process credential set to login to the machine. Select the user account and then click OK. Select the added user. Uncheck the Full control option in the Permissions pane.Click Apply and then OK. Close the certificates window.