Configuring TLS profile for gateways
TLS (Transport Layer Security) profiles are essential security components in IBM API Connect that configure the certificate chain and cipher suite used by API Connect when presenting server endpoints to other systems.
This guide covers the configuration of TLS server profiles for both remote DataPower API Gateways and IBM Managed DataPower Gateways.
Purpose
TLS profiles ensure secure communication between:
- API gateways and client applications
- API gateways and backend services
- Remote gateways and the API Connect instance
Key components
The TLS configuration system consists of four main components:
- TLS server profile - Defines server-side TLS settings
- TLS client profile - Defines client-side TLS settings
- Keystore - Stores private keys and certificates
- Truststore - Stores trusted CA certificates
See the following topics for more information.