All connections to the API must be protected by encryption, i.e. plain text transmission is not permitted.
Authentication is performed with the combination of accountId and password fields. However, mutual SSL authentication can be used if preferred. To use mutual SSL authentication, please contact us. When using mutual SSL authentication, the customer must provide a client certificate as part of the handshake process. The client certificate can be signed by our private certificate authority, or an external CA. If an external CA is used, Edentiti needs to know which CA in case the CA certificate needs to be imported into the greenID truststore.
When mutual authentication is being used, a different endpoint must be used. Details are in the Web Service Endpoints section.