IBM Cloud Private Public Portal

Welcome to the idea portal for IBM Cloud Private (i.e. product feature requests) - A more integrated and automated feedback system to connect your product improvement ideas with IBM product and engineering teams.  Happy submitting!

Allow usage of mutual TLS X.509 client certificates as client credentials to authenticate against ICP

As per customer's security policy standards we need to be able to use mutual TLS X.509 client certificates as client credentials to authenticate against ICP.

This is a major security concern raised by the architecture review board from the customer as current authentication relies on a basic technical username and password.

  • Guest
  • Apr 1 2019
  • Needs review
Real Scenario + Problem Statement
Who would benefit from this IDEA? As an ICP API consumer I want to use mutual TLS X.509 client certificates so that when access to ICP is higly secured and meet my security standards.
Why is it useful?
Workload
Market Evidence - # of customers in next 12 months
Impact
Avg Annual Contract Value Per Customer
Primary Persona
Secondary Persona (multi-select)
How should it work?
Competitive position
Revenue Opportunity
Geo Availability for this IDEA
Submitter Tags
Submitting Organization
Idea Priority High
Geo - Use for OBDR Reporting only
Submitter Tags
Owning Segment
Strategic Fit
Market Evidence
  • Attach files
  • Guest commented
    09 Apr 15:39

    Interested customer: BP2I / BNPP. 

  • Michael Weisbach commented
    10 May 13:14

    +1 for Lufthansa, even this is not prio 1 for them.... rule of thumb: 2FA is needed to access "admin portals"