Support for API client validation using mTLS
- Services: API Gateway
- Release Date: December 15, 2021
You can now specify that an API gateway verifies the TLS certificates presented by API clients to ensure that only authenticated API clients have access to an API. The process of the API gateway authenticating the API client is known as mutual TLS (mTLS).
For more information, see Adding mTLS support to API Deployments.
To enable an API gateway to support mTLS, you must also add custom CAs and CA bundles to the API gateway's trust store (see Customizing Trust Stores for TLS Certificate Verification.