Which client side configuration is essential to enable mutual TLS when calling an external API?

Unlock all questions

This demo includes only 20 questions. Upgrade to access hundreds of questions, flashcards, exam simulations, and disable ads.

Full question bankExam simulationsFlashcards
From $25.99Unlock all

Prepare for the MuleSoft Developer 2 Certification Exam. Access practice quizzes featuring flashcards and multiple choice questions with explanations. Get confident and ready for your certification success!

Multiple Choice

Which client side configuration is essential to enable mutual TLS when calling an external API?

Explanation:
Mutual TLS requires the client to present its certificate during the TLS handshake so the server can authenticate the client. To enable this on the client side, you configure a TLS context that includes a keystore. The keystore holds the client’s private key and its certificate, which are used to prove the client’s identity to the external API. A truststore is used to verify the server’s certificate, not to supply the client’s credentials, so it alone doesn’t enable mutual authentication. Disabling TLS would remove the encrypted channel altogether, and a pre-shared key in a header isn’t how TLS mutual authentication works because mTLS relies on certificate-based authentication at the TLS layer. So, the essential setup is a TLS context with a keystore, which provides the client certificate for mutual authentication.

Mutual TLS requires the client to present its certificate during the TLS handshake so the server can authenticate the client. To enable this on the client side, you configure a TLS context that includes a keystore. The keystore holds the client’s private key and its certificate, which are used to prove the client’s identity to the external API.

A truststore is used to verify the server’s certificate, not to supply the client’s credentials, so it alone doesn’t enable mutual authentication. Disabling TLS would remove the encrypted channel altogether, and a pre-shared key in a header isn’t how TLS mutual authentication works because mTLS relies on certificate-based authentication at the TLS layer.

So, the essential setup is a TLS context with a keystore, which provides the client certificate for mutual authentication.

More Multiple Choice Questions
Subscribe

Get the latest from Passetra

You can unsubscribe at any time. Read our privacy policy