Skip to content

IBM Secure Gateway Service Key

Service Name: IBM Secure Gateway

Service Description: IBM Secure Gateway provides secure connectivity and establishes a tunnel between your on-premise or cloud environments and the IBM Cloud. It enables you to securely connect applications and data sources across environments.

Service Address: https://cloud.ibm.com/catalog/services/secure-gateway

Validation Type: API Auth

IP Allow list: IP restrictions can be configured at the gateway level to control which IP addresses can access the gateway.

Secret Access Scope: Grants access to manage and configure secure gateway instances, establish connections between environments, and control data flow through the gateway.

Secret Revokement URL: https://cloud.ibm.com/docs/services/SecureGateway?topic=securegateway-resource-key

Secret Example: eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJzZXJ2aWNlX2lkIjoiYWJjZDEyMzQtNTY3O C05MGFiLWNkZWYtMTIzNDU2Nzg5MGFiIn0.MD_revSmKSevYxs- xqcrb8Sd_T4fXEa_SNR9_DGdJrc

Suspicious Activity Investigation Instructions:

  • Review IBM Cloud Activity Tracker logs for unusual gateway access or configuration changes
  • Check for unexpected connections or data transfers through the gateway
  • Monitor for unauthorized IP addresses attempting to access the gateway
  • Verify gateway client connection logs for unusual patterns or unauthorized access attempts

  • Review resource utilization metrics for abnormal traffic patterns

Mitigation Instructions:

  • Immediately revoke the compromised service key through the IBM Cloud console
  • Generate a new service key for legitimate applications that require access
  • Update IP allowlists to restrict access to only necessary IP addresses
  • Review and update destination access control lists to limit accessible endpoints
  • Enable additional security features like mutual authentication if not already in use
  • Update any applications or services using the old key with the new credentials
  • Consider implementing token expiration policies for service keys
  • Review and update security group configurations if applicable