Hi Members,

We have a requirement where we need to protect the API proxy using client certificate (mutual SSL) validation. The requirement is that consumer invokes APIGEE proxy with a client certificate sent in the request, APIGEE validates the certificate (expiry time, valid root CA, attached to the app allowed to call) and then on successful validation allow the call to API proxy. If unsuccessful then throw 401 error. 

I have tried to read documentation and looked into the community, I dont see this implemented .

Is this possible in APIGEE ? If yes, could you please guide me to the relevant document to implement same.

Kind Regards

Arijit