You can customize the URLs of managed APIs and custom APIs so that the API domain name replaces the Informatica domain name as the base URL. The name can contain up to 39 characters.
For example: Your organization API domain is sub.mydomain.com, and the name of the managed API is Customers. When you create a managed API, API Manager creates one of the following API URLs, based on whether or not you configured API URL customization:
•If you don't customize the API URLs, API Manager creates the following URL:
•If you customize the API URLs, API Manager creates the following URL:
https://sub.mydomain.com/api/Customers
On AWS, you can customize domain names in API Manager.
Certificates for customized API URLs
Before you configure a customized API URL, you must provide Informatica Global Customer Support with a certificate for the organization API domain. You are limited to providing Informatica with two certificates.
Prerequisites for certificates
The certificate you use for API URL customization must meet the following conditions:
•The certificate is an SSL/TLS X.509 version 3 certificate. It contains a public key, the fully qualified domain name (FQDN) or IP address of your website, and information about your organization.
•The certificate is self-signed by your private key or by the private key of an issuing certificate authority (CA). If your certificate is signed by a CA, include the certificate chain when you import your certificate.
•The certificate, private key, and certificate chain is in PEM format.
•The private key is unencrypted. You cannot import a private key that is protected by a password or passphrase.
•The certificate is valid at the time of import. You can request at least one year of validity.
• The certificate specifies a cryptographic algorithm and a key size. Informatica supports the following algorithms:
- 1024-bit RSA (RSA_1024)
- 2048-bit RSA (RSA_2048)
Certificates for multiple sub-domains
If your organization uses multiple sub-domains, you can provide certificates in the following ways:
•Provide a certificate with a wildcard based domain name. For example, use the domain name *.mydomain.com to support all domain names that end with .mydomain.com, such as dev.mydomain.com, qa.mydomain.com, and test.mydomain.com.
•Provide a SAN (Subject Alternative Name) based certificate. SAN is an X.509 extension that allows multiple domains to be associated with a single certificate.
Before you start
To provide Informatica with a certificate for the organization API domain, perform the following tasks:
1In your DNS, define routing from the organization API domain to the Canonical Name (CNAME) record of the Informatica domain. For example:
https://apigw-pod1.dm-us.informaticacloud.com
For more information about API domain names, see API domain name.
For more information about DNS CNAME records, contact Informatica Global Customer Support.
2Generate a certificate for the organization API domain.
3Contact Informatica Global Customer Support and provide them with the certificate.
Informatica Global Customer Support will inform you when you can configure the customization.
Configuring API URL customization
After Informatica Global Customer Support informs you that you can configure API URL customization, perform the following steps:
1In the API Registry page, click the Settings icon.
2In the API Domain Name page, select Use the API domain name as the default API URL.
3Click Save.
Certificate updates
Your organization creates certificates with a time limit for security. After expiration, the certificate is no longer valid and API calls are blocked automatically. Informatica cannot reissue the certificates. Therefore, your organization is responsible for monitoring certificate validity and for providing Informatica with an updated, signed certificate to replace the existing certificate before it expires.
Note: Your organization must create a new Informatica Global Customer Support ticket at least four weeks in advance of the existing certificate's expiration in order to update certificates in a timely manner and ensure their validity.