GET API for connect

Hi,

The penetration testing team has asked us to not have /connect API inaccessible, as in give HTTP 400 when some one access it.

Is there a way to solve this?

Thanks
Gaurav