Using mutual authentication in Bluemix requires the loading of client certs or trust stores.
This is possible via the Bluemix console, but there is no way to list or view current client certs, and there is no way to upload an additional or revoke a single client cert without going through the entire upload process of server cert, private key, intermediate, and client trust store altogether again.
This method takes time and is could introduce problems if an incorrect cert is uploaded by human error. Changing a client cert should not mean having to change server certs.
When revoking access, rather than just being able to delete a cert, we have to re-upload all which again could have an impact on running services.
NOTICE TO EU RESIDENTS: per EU Data Protection Policy, if you wish to remove your personal information from the IBM ideas portal, please login to the ideas portal using your previously registered information then change your email to "email@example.com" and first name to "anonymous" and last name to "anonymous". This will ensure that IBM will not send any emails to you about all idea submissions