Question

Bank of New Zealand
NZ
Last activity: 5 Sep 2025 16:45 EDT
Authentication Profile with "Client_Credentials" Grant Type
Hi,
For creating a new Authentication Profile, is it possible to use the "Grant Type" of "Client_Credentials" without sending the "Client_Secret" in the "Request Body"?
1. Because there is an option to include the "TrustStore" and "KeyStore", so the client_secret is not necessary.
2. If it cannot be ignore, can we try to delete it somehow? (client_secret becomes a required field if "Client_Credentials" is selected for the Grant_Type)
3. Any other suggestion if we want to use this OOTB Authentication Profile using "Client_Credentials" grant_type without Client_Secret (in the header or request body) but only Certificate?
Hope my question makes sense.
Thank you very much.