Enable JWT instead of mTLS
The management initiated communication to portal, analytics, and gateway subsystems can be secured with JWT. With JWT enabled, the portal, gateway, and analytics subsystems verify the JSON Web Token (JWT) sent from the management subsystem when it initiates communication with them. The subsystems that receive the token contact a JSON Web Key Set (JWKS) URL to verify it. The JWKS URL is hosted by the management subsystem, in a subpath of the management subsystem's platform REST API.
You can configure JWT instead of mTLS during installation, as documented in Installing API Connect, or you can configure JWT after installation: Use JWT security instead of mTLS between subsystems.
If you disable mTLS, you must enable JWT. It is not possible to configure API Connect with both mTLS and JWT disabled.