Hiding the certificate in the header for APIs secured with mutual TLS

You can hide the certificate in the header for APIs secured with mutual TLS. By default, the x-client-certificate header is shown in an API when mutual TLS is configured. You can choose to turn off this option in your Developer Portal.

Before you begin

The parameters for the example API showing the certificate. Parameters showing certificate

You must have administrator access to the Developer Portal to complete this task.
Note: This module synchronizes the credentials of applications that are created by consumers in the Developer Portal site UI. It cannot synchronize the credentials for applications that are created by the provider in the API Manager UI.

Procedure

  1. If the administrator dashboard is not displayed, click Manage to display it.
  2. On the administrator dashboard, click Configuration > System > IBM API Developer Portal.
  3. In the Configuration section, deselect the checkbox for Show certificate in header for APIs secured with mutual TLS.
  4. Click Save configuration.
    The Show certificate in header for APIs secured with mutual TLS. configuration is saved.

    The parameters for the example API now not showing the certificate:Parameters not showing certificate