SLX-OS can act as a server and a client at the same time. It acts as a server for https and for secure gNMI services. It can act as a client for services like LDAP, RADIUS, and SYSLOG. To ensure that the connection is secure, SLX-OS now implements importing client certificates for these services: LDAP, RADIUS, and SYSLOG. Importing root CA certificate for https services is also implemented. The support to secure gNMI service is already available in SLX-OS.
For detailed configuration information for mutual authentication, refer to the following topics:
Configuring mutual authentication for LDAP client
Configuring mutual authentication for RADIUS client
Configuring mutual authentication for SYSLOG client
Importing HTTPS / gNMI peer CA (can be root CA chain) certificate