February 13, 2019 By Michael Breslin 2 min read

IBM Cloudant Security Update: TLS 1.2+ and Service Endpoints

The IBM Cloudant team wants to share some very important updates that will bring enhanced security to the service. These updates will change the way you engage with Cloudant, so please review to ensure that your applications can take advantage and continue uninterrupted.

TLS 1.2+ required starting on June 1, 2019

Starting on June 1, 2019, the IBM Cloudant API will require Transport Layer Security (TLS) 1.2 and above. The IBM Cloudant API requires HTTPS and currently supports TLS 1.0 and above. The IBM Cloud withdrew support for TLS 1.0 and 1.1 for many services in March 2018 and IBM Cloudant is following suit. If your applications are still using TLS 1.0 or 1.1, please update them immediately to TLS 1.2 or above to avoid any impact. If you are unsure what TLS version your application is using to connect to Cloudant or have any questions, open a support ticket. See the IBM Cloudant security docs for more detail.

IBM Cloud service endpoints

IBM Cloudant is accessed through HTTP API endpoints. The endpoints for an instance are shown in both the URL field of the Service Credentials generated for the instance and in the Account > Settings tab of the IBM Cloudant Dashboard.

The publicly-facing external endpoint is:


IBM Cloud has introduced new two endpoints for Cloudant instances provisioned 2019 or later.

The new publicly-facing external endpoint is:


For instances deployed on Dedicated Hardware environments, an additional endpoint that is only accessible through the internal IBM Cloud Private network is provided. Leveraging this endpoint allows users to avoid outbound bandwidth costs and public network connectivity. The format of the endpoint is:


The USERNAME is the service name of the service instance user in the URL. This field also serves as the admin user name when using IBM Cloudant legacy authentication. An example USERNAME is de810d0e-763f-46a6-ae88-50823dc85581-bluemix, and the resulting example external endpoint would be de810d0e-763f-46a6-ae88-50823dc85581-bluemix.cloudantnosqldb.appdomain.cloud. See the endpoints documentation for more details.

Dedicated Hardware environments offer enhanced networking and encryption options

The IBM Cloudant Dedicated Hardware plan in the IBM Cloud catalog is for customers who require additional security and compliance benefits. IBM Cloudant Dedicated Hardware instances are isolated environments for the sole use of a customer to run one or more IBM Cloudant Standard plan instances. We have added the ability to connect via IBM’s internal network, meaning customers can avoid public network and outbound bandwidth costs when connecting to Cloudant from their applications. With that, the Dedicated Hardware environment now offers the following benefits:

  • Isolation at the database compute and storage layers for a single customer

  • Choice of any IBM Cloud location

  • Optional HIPAA readiness in US locations

  • Both external and internal service endpoints

  • IP whitelisting

  • Bring your own encryption key (BYOK) with Key Protect

See the documentation on the IBM Cloudant Dedicated Hardware plan for more details.

More from Announcements

IBM and SAP unlock business and industry value with new generative AI solutions 

3 min read - IBM Consulting is delivering on our commitment to co-innovate with SAP and collaborate with our clients. As part of our Value Generation Partnership initiative announced earlier this month with SAP, we are releasing the first 10 of 100 planned AI solutions to help clients transform their industries, optimize their business processes and successfully deliver their SAP programs.  Delivering AI business and industry innovation at scale  With the recently announced Value Generation Partnership initiative, IBM and SAP are co-innovating intelligent industry…

IBM SevOne 7.0: Reaching application-centric multicloud network observability  

2 min read - As enterprises increasingly rely on network connectivity to support cloud-based applications and remote workers, network managers require new methods to monitor and safeguard connectivity across diverse environments, including corporate networks, software-defined WANs and multiple public cloud providers.   According to the recent EMA Network Megatrends Report, responding network professionals believe that 53% of network outages and performance issues could be prevented with improved network management tools, yet only 9% find it very easy to hire skilled networking personnel. This is why…

IBM Hybrid Cloud Mesh and Red Hat Service Interconnect: A new era of app-centric connectivity 

2 min read - To meet customer demands, applications are expected to be performing at their best at all times. Simultaneously, applications need to be flexible and cost effective, and therefore supported by an underlying infrastructure that is equally reliant, performant and secure as the applications themselves.   Easier said than done. According to EMA's 2024 Network Management Megatrends report only 42% of responding IT professionals would rate their network operations as successful.   In this era of hyper-distributed infrastructure where our users, apps, and data…

IBM Newsletters

Get our newsletters and topic updates that deliver the latest thought leadership and insights on emerging trends.
Subscribe now More newsletters