How to configure MTLS without using perUserKeyManagerFactory?

poppy · September 15, 2025, 4:10pm

I want to configure MTLS for my scenario. I want to reuse connections, when using the option perUserKeyManagerFactory and shareConnections together, the key manager factory configured is ignored. While this seems logical, it means I can’t have a client certificate and a shared pool of connection.

So how can I achieve this?

Bonus: some validation should be added imho to fail fast in case of non compatible configurations.

val apiProtocol: HttpProtocolBuilder =
HttpDsl.http
.baseUrl(Configuration.apiBaseUrl)
.acceptHeader(“application/json”)
.contentTypeHeader(“application/json”)
.maxConnectionsPerHost(50)
.header(“Content-Type”, “application/json”)
.perUserKeyManagerFactory { _ → getClientKeyManagerFactory() } –> Is there some other option to configure the key store?

slandelle · September 15, 2025, 6:28pm

You can configure a global KeyManager in gatling.conf.

poppy · September 15, 2025, 6:44pm

Thanks for your answer but is it the only solution? I have several apis with different requirements to test as part of the scenario. It is also more convenient to be able to configure it programmatically.

system · October 15, 2025, 6:44pm

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
Issue with .perUserKeyManagerFactory(_ => KeyManagerFactory.getInstance("TLS")) Gatling (Open-Source)	0	121	April 23, 2019
HTTPS client certificate configuration Gatling (Open-Source)	25	1406	October 8, 2014
Switching TLS/SSL certificates based on the data in session in a scenario Gatling (Open-Source)	14	526	December 13, 2023
mTLS Setup Gatling (Open-Source)	1	495	December 16, 2021
Using multiple certificate in one simulation Gatling (Open-Source)	8	335	April 14, 2020

How to configure MTLS without using perUserKeyManagerFactory?

Related topics