- Deborah Cross (Unlicensed) to resolve Edentiti references. This page is only 3 sentences, should it be merged into something else?
All connections to the API must be protected by encryption, i.e. plain text transmission is not permitted.
Authentication is performed with the combination of accountId and password fields. However, mutual SSL authentication can be used if preferred. To use mutual SSL authentication, please contact Edentiti. When using mutual SSL authentication, the customer must provide a client certificate as part of the handshake process. The client certificate can be signed by Edentiti, or an external CA. If an external CA is used, Edentiti needs to know which CA in case the CA certificate needs to be imported into the greenID truststore.
When mutual authentication is being used, a different endpoint must be used. Details are in the Web Service Endpoints section.