IAM in Service Catalog
Clients are encouraged to connect on the alternate port (7443), as it requests certificate authentication on the initial SSL negotiation. Connecting to port 443 works, but your client will have to be able to handle renegotiation of the connection. Also note that jumbo frames (MTU > 1500) are not supported.
A group may be configured to require 2-factor authentication for update operations including PUT and DELETE operations on the general information, membership, or application information.