| API CONNECT | |
 | Activate and Test Application Authentication via Mutual Authentication (mTLS) in APIC 2018.4.1.5 using DP API Gateway [Guest Post by JP Schiller] |
| Guest Post by JP Schiller | |
|
Important: This feature is only available since 2018.4.1.5 fixpack for the API Gateway. v5C Gateway supported this earlier. Purpose is to document the steps needed to authenticate a subscribed Application (app) API call using Mutual Authentication (mTLS) with the Datapower API Gateway. |
|
|
|
|
| API CONNECT | |
|
| Setting Object Storage values for Backup Parameters in API Connect 2018.4.1.X [Guest Post by Nick Cawood] |
| Guest Post by Nick Cawood | |
|
In a Container Service like IKS Object Storage can be selected as the back storage destination for the Management and Portal subsystems. Knowledge Center contains guidance for the parameters for the backups (set with apicup tool) but for clarity here is some guidance on how these translate to the values you need to extract from your Container Service and use. |
|
|
|
|
| KUBERNETES | |
 | Enable Log Rotation in Kubernetes |
|
This week we had a number of issues with diagnosing a customer system because the kubernetes logs were rotating far too quickly. We were unable to off box the logs to an external source for non tecbnical reasons. |
|
|
|
|
| API CONNECT | |
|
| API Connect WhitePaper 2018.4.1.x |
|
Alongside Aiden Gallagher I put together the API Connect WhitePaper for 2018.4.1 The document can be downloaded from https://developer.ibm.com/apiconnect/2019/02/08/api-connect-v2018-deployment-whitepaper-now-available/ |
|
|
|
|
| KUBERNETES | |
|
| Setting vm.max_map_count on Kubernetes [Guest Post by Nick Cawood] |
| Guest Post by Nick Cawood | |
|
I’ve recently been installing API Connect 2018.4.1X on a Kubernetes Container Service (IKS - IBM Cloud Kubernetes Service). I can highly recommend this experience as many of the complexities of setting up Kubernetes are handled by the Container Service. However some of the unique settings that APIC needs are not covered implicitly (or access to the Nodes as root is required, which is not possible via IKS) so some work is needed to manage these: |
|
|
|
|
|
Misc | A New Home |
|
In January I finally broke 1500 views a month of my blog. Though this does not sound like a lot, it was my target for 2019. However I was getting more annoyed with Medium. Medium is an amazing platform for articles and discovering content. However I wanted to have more control and to be able to play with more tools. With medium you are locked into their eco system. If you just want to produce content it is fine, but I wanted to play more. |
|
|
|
|
| API CONNECT | |
|
| Quick Note --- Egress Whitelisting in Kubernetes |
|
I got bored flying back from Germany last week and so I tried to solve a problem our test team were hitting. They needed to whitelist access to the internet for all the pods of one application |
|
|
|
|
| API CONNECT | |
|
| API Connect 2018 --- Removing a user from a UserRegistry |
|
In API Connect you can create your own user registries, these can be backed on to LDAP or be a local user registry. There are two ways to delete users from a user registry. Both of these require that the user is no longer a member to any provider orgs. There is no way to remove a user from a user registry in the UI today. |
|
|
|
|
| API CONNECT | |
|
| API Connect 2018 --- CLI Realm changed to identify provider |
|
One of my most viewed posts is https://medium.com/@cminion/api-connect-2018-cli-login-realm-39f24178bf99?source=your_stories_page--------------------------- In 2018.4.1.1 the term realm has been replaced with identify provider so the command is now |
|
|
|
|
| API CONNECT | |
|
| APIConnect 2018: Replacing Certificates |
|
|
|
|
|
|
|
| ABOUT | APICONNECT | API | DATAPOWER | OPENSHIFT | EVENTSTREAMS | INTEGRATION | DAY2-OPS | ACE |
![Activate and Test Application Authentication via Mutual Authentication (mTLS) in APIC 2018.4.1.5 using DP API Gateway [Guest Post by JP Schiller]](/images/2c2aba00-77be-11e9-8fee-aeeeb7d8a4d0)