During certificate onboarding in HTTPS channel via reverse proxy, you need to:
- Create a security configuration (SC) with the certificate authentication
login module. It creates a role-mapping XML file for that SC under CSI
- Map the reverse proxy certificate's subject under the impersonator role in
the XML file.