IBM Cloud Private Public Portal

Welcome to the idea portal for IBM Cloud Private (i.e. product feature requests) - A more integrated and automated feedback system to connect your product improvement ideas with IBM product and engineering teams.  Happy submitting!

Allow usage of mutual TLS X.509 client certificates as client credentials to authenticate against ICP

As per customer's security policy standards we need to be able to use mutual TLS X.509 client certificates as client credentials to authenticate against ICP.

This is a major security concern raised by the architecture review board from the customer as current authentication relies on a basic technical username and password.

  • Guest
  • Apr 1 2019
  • Needs review
Who would benefit from this IDEA? As an ICP API consumer I want to use mutual TLS X.509 client certificates so that when access to ICP is higly secured and meet my security standards.
Idea Priority High
  • Attach files
  • Michael Weisbach commented
    10 May, 2019 01:14pm

    +1 for Lufthansa, even this is not prio 1 for them.... rule of thumb: 2FA is needed to access "admin portals"

  • Guest commented
    9 Apr, 2019 03:39pm

    Interested customer: BP2I / BNPP.