Implement mTLS in API integration
Overview
Equativ requires API integrations to use Mutual TLS (mTLS), a protocol that ensures both the client and the server authenticate each other during a secure connection.
Unlike regular TLS used for HTTPS, where only the server is authenticated, mTLS adds an extra layer of security by verifying the identity of the client. This is particularly useful for APIs where it is critical to ensure that only authorized clients interact with the server.
Benefits
mTLS has the following benefits:
- Enhanced security: mTLS prevents unauthorized access and mitigates risks such as bot attacks.
- Trust establishment: Both parties, client and server, are cryptographically validated.
- Simplified bot protection rules: mTLS lets you avoid relying on less secure or maintainable methods such as IP whitelisting.
Workflow
The mTLS workflow includes the following stages:
-
Client authentication:
- The client sends its certificate to the server.
- The server validates the client’s certificate against a trusted certificate authority (CA).
-
Server authentication:
- The server sends its certificate to the client.
- The client validates the server’s certificate.
- Secure communication: once both certificates are validated, the system establishes encrypted communication.
For more information about mTLS, see What is Mutual TLS?
Sequence diagram
As shown in the following diagram, the workflow facilitates mutual validation.

Get started
To start your integration, contact your dedicated Equativ Technical Account Manager to receive your mTLS certificate. You can then implement it in your API integration workflow.