How can we improve Azure API Management?

← API Management

Restrict Portal Access by IP Address

In some cases, Management Portal and Developer Portal should not be published into the Internet so that anonymous abusive users cannot attack the Portal, such as DDoS.
If we can set a rule with IP address filtering like a firewall service, it would be very helpful to protect our API Management service.

183 votes

Vote

Sign in

(thinking…)

Sign in with:

Microsoft

Forgot password?

Create a password

Signed in as (Sign out)

You have left! (?) (thinking…)

Yuta Imamura shared this idea · Sep 7, 2016 · Flag idea as inappropriate… · Admin →

under review · Sep 9, 2016

5 comments

Add a comment…

Sign in

(thinking…)

Sign in with:

Microsoft

Forgot password?

Create a password

Signed in as (Sign out)

Submitting...

An error occurred while saving the comment

Marek Grabarz commented · February 15, 2018 2:22 AM · Flag as inappropriate

You can easily configure IP restrictions placing APIM in VNET in Internal mode. Then you can route traffic through NSG controlled VIP, applicances, Intranet or WAF.
https://docs.microsoft.com/en-us/azure/api-management/api-management-using-with-internal-vnet

Submitting...
Dan Byrne commented · February 22, 2017 8:20 PM · Flag as inappropriate

Agreed - this is a high priority requirement.

Submitting...
Dan Byrne commented · February 22, 2017 8:19 PM · Flag as inappropriate

@Tony B - you can do IP filtering on the API itself using Policies

Submitting...
Pratik Saraogi commented · January 30, 2017 6:07 AM · Flag as inappropriate

Any updates on this?

Submitting...
Tony B commented · December 30, 2016 8:10 AM · Flag as inappropriate

Not just Management and Developer Portal but also the API itself.

Submitting...

Sign in

(thinking…)

Sign in with:

Microsoft

Forgot password?

Create a password

Signed in as (Sign out)

Sign in
Sign up

API Management: Security

Searching…

No results.
Clear search results

Give feedback
- (General Feedback) 6,219 ideas
- Additional Services 324 ideas
- Analytics Platform System 20 ideas
- API Apps 0 ideas
- API Management 618 ideas
- Automation 523 ideas
- Azure Active Directory 4,811 ideas
- Azure Active Directory Application Requests 271 ideas
- Azure Advisor 32 ideas
- Azure Analysis Services 187 ideas
- Azure API for FHIR 12 ideas
- Azure App Configuration 37 ideas
- Azure Arc 24 ideas
- Azure Automanage 2 ideas
- Azure Backup 508 ideas
- Azure Blockchain Service 10 ideas
- Azure Bot Service 32 ideas
- Azure Certified Device 15 ideas
- Azure Cloud Shell 358 ideas
- Azure Cognitive Services 32 ideas
- Azure Confidential Compute 2 ideas
- Azure Container Instances 160 ideas
- Azure Container Registry 93 ideas
- Azure Cosmos DB 258 ideas
- Azure CycleCloud 4 ideas
- Azure Data Explorer 195 ideas
- Azure Data Share 10 ideas
- Azure Database for MariaDB 18 ideas
- Azure Database for MySQL 71 ideas
- Azure Database for PostgreSQL 146 ideas
- Azure Database Migration Service 76 ideas
- Azure Databricks 248 ideas
- Azure Dev Spaces 9 ideas
- Azure Digital Twins 18 ideas
- Azure Event Grid 63 ideas
- Azure FarmBeats 12 ideas
- Azure Functions 233 ideas
- Azure FXT Edge Filer 0 ideas
- Azure Governance 200 ideas
- Azure HPC Cache 0 ideas
- Azure IoT (Hub, DPS, SDKs) 318 ideas
- Azure IoT Central 151 ideas
- Azure IoT Edge 84 ideas
- Azure IoT Security 0 ideas
- Azure IoT Solution Accelerators 44 ideas
- Azure Key Vault 172 ideas
- Azure Kinect DK 63 ideas
- Azure Kubernetes Service (AKS) 285 ideas
- Azure Lighthouse 29 ideas
- Azure Management Groups 21 ideas
- Azure Maps 68 ideas
- Azure Marketplace 449 ideas
- Azure Media Services 249 ideas
- Azure Migrate 57 ideas
- Azure mobile app 354 ideas
- Azure Monitor 235 ideas
- Azure Monitor- Alert Management 154 ideas
- Azure Monitor-Application Insights 777 ideas
- Azure Monitor-Log Analytics 986 ideas
- Azure NetApp Files (ANF) 30 ideas
- Azure Pack 293 ideas
- Azure portal 2,174 ideas
- Azure Purview 111 ideas
- Azure Red Hat OpenShift 12 ideas
- Azure Remote Rendering 9 ideas
- Azure Reservations 182 ideas
- Azure Resource Manager 536 ideas
- Azure Search 281 ideas
- Azure Security Center 299 ideas
- Azure Sentinel 126 ideas
- Azure Service Health 39 ideas
- Azure SignalR Service 15 ideas
- Azure Spatial Anchors 28 ideas
- Azure Sphere 82 ideas
- Azure Spring Cloud 2 ideas
- Azure Stack HCI 3 ideas
- Azure Stack Hub 199 ideas
- Azure Synapse Analytics 423 ideas
- Azure TCO Calculator 30 ideas
- Azure Time Series Insights 28 ideas
- Batch 35 ideas
- Batch AI 10 ideas
- Biztalk Services 14 ideas
- Blockchain 54 ideas
- Cache 38 ideas
- Change Tracking 12 ideas
- Cloud Services (Web and Worker Role) 272 ideas
- Cost Management 323 ideas
- Cross region move for Azure resources 11 ideas
- Customer Insights 13 ideas
- Customer Lockbox for Microsoft Azure 1 idea
- Data Catalog 176 ideas
- Data Factory 1,164 ideas
- Data Lake 354 ideas
- Data Science VM 24 ideas
- Diagnostics and Monitoring 200 ideas
- Event Hubs 41 ideas
- Global Infrastructure 44 ideas
- HDInsight 132 ideas
- Lab Services 362 ideas
- Logic Apps 1,771 ideas
- Machine Learning 236 ideas
- Mobile Engagement 19 ideas
- Networking 1,396 ideas
- Notification Hubs 35 ideas
- Project Bonsai 28 ideas
- Scheduler 43 ideas
- Scripting and Command Line Tools 102 ideas
- SDK and Tools 143 ideas
- Security and Compliance 100 ideas
- Service Bus 200 ideas
- Service Fabric 304 ideas
- Signup and Billing 1,757 ideas
- Site Recovery 294 ideas
- SQL Data Sync 68 ideas
- SQL Database 861 ideas
- SQL Managed Instance 151 ideas
- SQL Server 10,614 ideas
- SQL Server - Big Data Clusters 47 ideas
- Storage 1,020 ideas
- StorSimple 26 ideas
- Stream Analytics 266 ideas
- Support Feedback 273 ideas
- System Center Data Protection Manager 150 ideas
- Update Management 188 ideas
- Virtual Machines 1,679 ideas
- Web Apps 612 ideas
Microsoft Azure