I try to call the internal restman service of the Gateway without client certificate, but with SSL and basic authentication.
This does not work since the client actually has a certificate available and sends it. Therefore the restman policy seems to ignore the basic authentication and, as a consequence, fails on the step "Authenticate request against internal identity provider".
When I just change the order of the SSL options (see Screenshot with diff view) in the restman policy it works because the basic authentication is taken into account and the authentication is successful. But now, perhaps the certificate way works no more (haven't tried it).
Is there another way to make this work without modify the restman policy? Can I force the client to not send the client certificate?