SAP Knowledge Base Article - Preview

3418201 - Deprecation of Weak Client Certificate Chains in API Management


With API Management operating in Cloud Foundry environment, it is important to consider the implications of the
upcoming deprecation of weak client certificate chains for tenants.

Client certificate chains are used in the authentication process to establish the identity of clients accessing the API Management service. Weak client certificate chains refer to certificates that are considered to have insufficient security measures, making them vulnerable to attacks.

Note: This has an impact on both inbound and outbound communication in API management when client certificate
authentication is utilized.

The default certificates provided by SAP on the API Management tenant will not be affected by this change. The expected
impact will only be on the customer-owned certificates that are used in API Management.



Cloud Foundry


API Management, Integration Suite, Certificates, Product Enhancement, Weak Client Certificate Chains, Client Certificate Chains , KBA , OPU-API-OD-OPS , Operations , Problem

About this page

This is a preview of a SAP Knowledge Base Article. Click more to access the full version on SAP for Me (Login required).

Search for additional results

Visit SAP Support Portal's SAP Notes and KBA Search.