Overview of Keystore and Truststore
You must have the API Gateway's manage security configurations functional privilege assigned to perform the following tasks in the security configuration section of API Gateway:
![*](chapterTOC_bullet.png)
Configure the keystores and truststores required for incoming and outgoing message-level and transport-level security.
![*](chapterTOC_bullet.png)
Configure ports of
API Gateway.
![*](chapterTOC_bullet.png)
Configure the SAML issuer to use in
API Gateway outbound authentication to fetch the SAML token from the STS (Security Token Service).
![*](chapterTOC_bullet.png)
Configure the custom assertions to use in inbound authentication of
API Gateway.
![*](chapterTOC_bullet.png)
Configure Kerberos settings.
![*](chapterTOC_bullet.png)
Manage master password.
![*](chapterTOC_bullet.png)
Configure JSON web token(JWT), OAuth, and OpenID authorization servers and third-party providers.