You're almost there! Please answer a few more questions for access to the Applications content. Complete registration
Interested in joining? Complete your registration by providing Areas of Interest here. Register

Disable Basic Authentication for API access on fusion (production) environment

in Applications Security 14 comments

Summary:

We'd like to disable the option to authenticate on APIs with Username/Password.

Content (required):

We're upgrading our security policies and one of the weaknesses in our current setup is that it is possible to use Basic Authentication to authenticate on API usage.

Is there any way to disable this so that it's only possible to authenticate API calls by using anything that's authenticated using the API Authentication Configuration in the Security Console?

In practice it is not possible for users to have a non-expired password, but in theory the passwords can still be reset through the Security Console.

Tagged:

Howdy, Stranger!

Log In

To view full details, sign in.

Register

Don't have an account? Click here to get started!