MCP Integration Suite Server

configuring-a-custom-domain-for-a-virtual-host-6b9e5a3.md•13.1 kB

# Configuring a Custom Domain for a Virtual Host The API Management capability enables you to personalize the virtual host URL by configuring a custom domain of your choice. This means that you can have all your APIs displayed as "https://api.bestrun.com/..." if desired. Additionally, you have the option to set up multiple virtual hosts using the same custom domain, such as "https://api1.bestrun.com," "https://api2.bestrun.com," and so on. <a name="loio6b9e5a3430b84fecaac1c994fff6c3ee__prereq_lmj_lkg_rz"/> ## Prerequisites - You must have a service key for the `APIManagement.SelfService.Administrator` role. To know more about creating a service key for accessing APIs in the API portal, see the **Creating a Service Key** section in [Accessing API Management APIs Programmatically](accessing-api-management-apis-programmatically-24a2c37.md). - You have fetched a valid bearer token. To know more about obtaining a bearer token, see the **Obtaining a Bearer Token** section in [Accessing API Management APIs Programmatically](accessing-api-management-apis-programmatically-24a2c37.md). <a name="loio6b9e5a3430b84fecaac1c994fff6c3ee__context_tcd_t2b_yyb"/> ## Context The advantage of establishing your own custom domain with a virtual host is that it protects you from future changes, such as those that may occur when rehosting your APIs. In addition, you have the option to secure your custom domain with a default one-way TLS or a mutual TLS. A one-way TLS validates only the secure identity of the API Proxy, providing encryption and authentication for the server. On the other hand, a mutual TLS validates the identities of both the API Proxy and the client, providing mutual authentication. If you want to configure a mutual TLS, see [Configuring Mutual TLs for Virtual Host](configuring-mutual-tls-for-virtual-host-9faf7ce.md). This process enables you to establish a more secure connection between your API Proxy and the client, ensuring that both parties can trust each other's identities. To request a custom domain with one-way TLS, perform the following steps: <a name="loio6b9e5a3430b84fecaac1c994fff6c3ee__steps_xzq_hr4_dmb"/> ## Procedure 1. Run the services using a standard REST console. 2. Service to create a new virtual host: - Service URL: https://<url-from-service-key\>/apiportal/operations/1.0/Configuration.svc/VirtualHostRequests - Method: POST - Request Header: Authorization: Bearer <token\> - Content Type: application/json - Accept: application/json - Request Body: > ### Sample Code: > ``` > { > "accountId" : "subdomain of your subaccount", > "virtualHostUrl": "apis.customdomain.com", > "isDefaultVirtualHostRequest" : false, > "isForCustomDomain": true, > "keyStoreName": "ref://<reference_name>" or "<key_store_name>", > "keyStoreAlias": "key_store_alias", > "operation" : "CREATE" > } > > ``` > ### Note: > - accountId: This is the subdomain of your subaccount. > > - virtualHostUrl - This is your virtual host URL which is used to access the deployed API proxies, e.g prod-apis.customdomain.com, testapi.customdomain.com. > > - isDefaultVirtualHostRequest -If you want the new virtual host to be the default virtual host, set the value to "true", else set it to "false". > > - isForCustomDomain - Ensure that the value is set to "true". > > - keyStoreName: The keyStoreName parameter refers to the name of the keystore that should contain the custom domain's public and private key, or the name of the certificate store reference pointing to the keystore. To learn how to create a keystore and upload certificates, see [Manage Certificates](50-Development/manage-certificates-c665875.md). Alternatively, you can use a certificate store reference name that points to the keystore containing the custom domain's public and private keys. For more information, see [Working with References](50-Development/working-with-references-6f96b64.md). > > - keyStoreAlias: The keyStoreAlias parameter refers to the name of the keystore certificate containing the custom domain's public and private key. To learn how to create a keystore certificate and upload certificates, see [Manage Certificates](50-Development/manage-certificates-c665875.md). > ### Note: > To enable client authentication \(mutual TLS\) while configuring the virtual host with custom domain, see [Configuring Mutual TLs for Virtual Host](configuring-mutual-tls-for-virtual-host-9faf7ce.md). - Response: 201 > ### Sample Code: > ``` > { > "d": { > "__metadata": { > "id": "https://apiportalurl:443/apiportal/api/1.0/Management.svc/VirtualHostRequest('1F02AD6A-A53C-43F4-BF95-F053A8A1469A')", > "uri": "https://apiportalurl:443/apiportal/api/1.0/Management.svc/VirtualHostRequest('1F02AD6A-A53C-43F4-BF95-F053A8A1469A')", > "type": "apimgmtconfiguration.VirtualHostRequest" > }, > "accountId": "subdomain of your subaccount", > "allocatedPort": 443, > "allocationStatus": "COMPLETE", > "clusterName": "", > "id": "1F02AD6A-A53C-43F4-BF95-F053A8A1469A", > "isClientAuthEnabled": false, > "isDefaultVirtualHostRequest": false, > "isForCustomDomain": true, > "isForNonSni": false, > "isTLS": false, > "keyStoreAlias": "key_store_alias", > "keyStoreName": "ref://<reference_name>" or "<key_store_name>", > "life_cycle": { > "__metadata": { > "type": "apimgmtconfiguration.History" > }, > "changed_at": "/Date(1707380514905)/", > "changed_by": "sb-apiaccess_1705298659201!b109482|api-portal-xsuaa!b11864", > "created_at": "/Date(1707380504072)/", > "created_by": "sb-apiaccess_1705298659201!b109482|api-portal-xsuaa!b11864" > }, > "operation": "CREATE", > "trustStore": null, > "virtualHostId": "c269915f-7adc-4f78-bdd0-dd39ffcb079f", > "virtualHostUrl": "apis.customdomain.com", > "lbHost": "lbHost url" > } > } > > ``` The "lbHost" field contains the host URL which is required for the custom domain DNS mapping. 3. Service to update a virtual host: You can update the virtualHostUrl, keyStoreName, keyStoreAlias, trustStore, and the isDefaultVirtualHostRequest flag - Service URL: https://<url-from-service-key\>/apiportal/operations/1.0/Configuration.svc/VirtualHostRequests - Method: POST - Request Header: Authentication Bearer <token\> - Content Type: application/json - Accept: application/json - Request Body: > ### Sample Code: > ``` > { > "accountId" : "subdomain of your subaccount", > "virtualHostUrl": "apisupdated.customdomain.com", > "isDefaultVirtualHostRequest" : false, > "isForCustomDomain": true, > "keyStoreName": "ref://<reference_name>" or "<key_store_name>", > "keyStoreAlias": "key_store_alias", > "operation" : "UPDATE", > "virtualHostId":"1F02AD6A-A53C-43F4-BF95-F053A8A1469A" > } > > ``` > ### Note: > - accountId: This is the subdomain of your subaccount. > > - virtualHostUrl - This is your virtual host URL which is used to access the deployed API proxies, e.g prod-apis.customdomain.com, testapi.customdomain.com. > > - isDefaultVirtualHostRequest -If you want the new virtual host to be the default virtual host, set the value to "true", else set it to "false". > > - isForCustomDomain - Ensure that the value is set to "true". > > - keyStoreName: The keyStoreName parameter refers to the name of the keystore that should contain the custom domain's public and private key, or the name of the certificate store reference pointing to the keystore. To learn how to create a keystore and upload certificates, see [Manage Certificates](50-Development/manage-certificates-c665875.md). Alternatively, you can use a certificate store reference name that points to the keystore containing the custom domain's public and private keys. For more information, see [Working with References](50-Development/working-with-references-6f96b64.md). > > - keyStoreAlias: The keyStoreAlias parameter refers to the name of the keystore certificate containing the custom domain's public and private key. To learn how to create a keystore certificate and upload certificates, see [Manage Certificates](50-Development/manage-certificates-c665875.md). > > - virtualHostId: This is the unique ID of the virtual host you are trying to update. > ### Note: > To enable client authentication \(mutual TLS\) while configuring the virtual host with custom domain, see [Configuring Mutual TLs for Virtual Host](configuring-mutual-tls-for-virtual-host-9faf7ce.md). - Response: 201 > ### Sample Code: > ``` > { > "d": { > "__metadata": { > "id": "https://apiportalurl:443/apiportal/api/1.0/Management.svc/VirtualHosts('689333a2-2f6b-4029-8734-2b36a687e559')", > "uri": "https://apiportalurl:443/apiportal/api/1.0/Management.svc/VirtualHosts('689333a2-2f6b-4029-8734-2b36a687e559')", > "type": "apimgmtconfiguration.VirtualHostRequest" > }, > "accountId": "subdomain of your subaccount", > "allocatedPort": 443, > "allocationStatus": "COMPLETE", > "clusterName": "", > "id": "1F02AD6A-A53C-43F4-BF95-F053A8A1469A", > "isClientAuthEnabled": false, > "isDefaultVirtualHostRequest": false, > "isForCustomDomain": true, > "isForNonSni": false, > "isTLS": false, > "keyStoreAlias": "key_store_alias", > "keyStoreName": "ref://<reference_name>" or "<key_store_name>", > "life_cycle": { > "__metadata": { > "type": "apimgmtconfiguration.History" > }, > "changed_at": "/Date(1707380514905)/", > "changed_by": "sb-apiaccess_1705298659201!b109482|api-portal-xsuaa!b11864", > "created_at": "/Date(1707380504072)/", > "created_by": "sb-apiaccess_1705298659201!b109482|api-portal-xsuaa!b11864" > }, > "operation": "UPDATE", > "trustStore": null, > "virtualHostId": "c269915f-7adc-4f78-bdd0-dd39ffcb079f", > "virtualHostUrl": "apisupdated", > "lbHost": "lbHost url" > } > } > > ``` > ### Note: > The "lbHost" field contains the host URL that is required for the custom domain DNS mapping. If the "lbHost" field does not display any value, please raise a support ticket through the [SAP Support Portal](https://support.sap.com/en/index.html) using the component OPU-API-OD-OPS. > ### Note: > After the virtual host is updated, APIs associated to a product using the updated virtual host must be redeployed and republished. **Related Information** [Configuring a Default Domain for a Virtual Host](configuring-a-default-domain-for-a-virtual-host-1085228.md "After successful onboarding, API proxies are assigned a default virtual host URL. Currently, this URL uses the domain "ondemand.com," which is the common domain for the Business Technology Platform. It’s prefixed with the subdomain consisting of the subaccount name and the data center where the SAP Integration Suite tenant is onboarded. For example, the default host alias could be https://myaccount....eu10.hana.ondemand.com.") [Configuring Mutual TLs for Virtual Host](configuring-mutual-tls-for-virtual-host-9faf7ce.md "You can configure mutual TLs for a virtual host, which validates the identities of both the web server and the web client.") [Configuring Additional Virtual Host in Cloud Foundry Environment](configuring-additional-virtual-host-in-cloud-foundry-environment-a7b91e5.md "A virtual host allows you to host multiple domain names on the API Management capability within SAP Integration Suite.")

Loading blob content...

Latest Blog Posts

Don't Use Large Strings as Cache Keys
By punkpeye on January 11, 2026.
markdown
node-js
cache
What are Claude Skills?
By punkpeye on January 10, 2026.
mcp
skills
How to Test MCP Streamable HTTP Endpoints Using cURL
By punkpeye on January 2, 2026.
tutorial
bash

MCP directory API

We provide all the information about MCP servers via our MCP API.

curl -X GET 'https://glama.ai/api/mcp/v1/servers/1nbuc/mcp-integration-suite'

If you have feedback or need assistance with the MCP directory API, please join our Discord server

configuring-a-custom-domain-for-a-virtual-host-6b9e5a3.md•13.1 kB