SSL provides the following security services from the client to the server:
Authentication and non-repudiation of the server, using digital signatures
Data confidentiality through the use of encryption
Data integrity through the use of authentication codes
Mutual SSL provides the same services from the server to the client as SSL. It provides authentication and non-repudiation of the client, using digital signatures.
Set up Access Manager certificates for security, and import them into Access Manager. See Creating Certificates.
Create an X.509 authentication class. See Mutual SSL (X.509) Authentication.
Create an authentication method using this class. See Configuring Authentication Methods.
Create an authentication contract using the X.509 method. See Configuring Authentication Contracts.
Update Identity Server cluster configuration. See Updating Identity Server Configuration.
Update any associated Access Gateways to read the new authentication contract.
Assign the contract to protect resources. See Configuring Protected Resources.
Update Access Gateway.