Security
IBM webMethods Integration security
Click here for a summary on IBM® webMethods Integration security. You can also see the Data Access and Security section in this document for more information.
Why does IBM webMethods Integration use the OPTIONS method?
The OPTIONS method is open for IBM webMethods Integration as it is required to run the site. As this is a REST API implementation, the application requires the OPTIONS method to be available for AJAX calls to work.
Unable to upload customer certificates on IBM webMethods Integration
Customer certificates that are signed only by a trusted root CA are accepted on IBM webMethods Integration. All other certificates are rejected.
Is CORS handling available on IBM webMethods Integration?
No, IBM webMethods Integration currently does not have a CORS handling mechanism. You can use API Gateway to process your requests instead.
How to resolve the security compliance issue while starting an IBM webMethods Integration service by using basic authentication through API gateway?
For IBM webMethods Integration service authentication, you can use certificates instead of basic authentication. If you are processing native requests, you need to also configure these certificates on API Gateway.
How to renew custom domain certificates?
Custom domain certificates are renewed by IBM support. Provide the following information while raising a certificate renew request:
- Client certificate, intermediate, and root certificates in Base64 format
- Certificate key in Base64 format (.pem or .key)
- Cipher details (if any)