Authentication of REST service requests

Db2 REST HTTP basic authentication

Db2 uses HTTP basic authentication when you specify the user ID and password or a RACF® PassTicket in the HTTP Authorization header. The HTTP basic authentication credentials can be in clear text or Base64 encoding. Db2 uses the IBM® System Authorization Facility (SAF) to authenticate the HTTP basic authentication credentials.

Db2 REST client certificate authentication

Certificate authentication is used when the following conditions are true:

• The connection to Db2 is a secure connection that uses HTTPS and AT-TLS.
• A client certificate that is registered with RACF or another SAF-compliant security product is presented to Db2.