Hello Community Support Team,
I’m experiencing a PERMISSION_DENIED: Request unauthorized error when creating a new workflow in my Temporal Cloud namespace using mTLS with a CN-based filter.
Context:
-
Temporal Cloud with CN filter enabled (CN: “ABCD”) without wildcard.
-
PoC previously worked with the old certificate (CN: “ABCD”).
-
The certificate was renewed; both old and new certificates are valid with same CN: ABCD.
-
When using the new certificate with the CN filter enabled, the error occurs.
-
If I disable the CN filter, both certificates succeed in creating workflows.
-
Re-enabling the CN filter again causes the new certificate to fail while the old certificate continues to work.
Could you please:
-
Confirm the CN filtering policy allows multiples certificates with the same CN for client authentication.
-
Suggest any client-side debugging steps or logs I can follow to resolve this.
Thanks,
JP