How can we improve Azure API Management?

← API Management

Restrict Portal Access by IP Address

In some cases, Management Portal and Developer Portal should not be published into the Internet so that anonymous abusive users cannot attack the Portal, such as DDoS.
If we can set a rule with IP address filtering like a firewall service, it would be very helpful to protect our API Management service.

167 votes

Vote

Sign in

(thinking…)

Sign in with:

Microsoft

Forgot password?

Create a password

Signed in as (Sign out)

You have left! (?) (thinking…)

Yuta Imamura shared this idea · September 07, 2016 · Flag idea as inappropriate… · Admin →

under review · September 09, 2016

5 comments

Add a comment…

Sign in

(thinking…)

Sign in with:

Microsoft

Forgot password?

Create a password

Signed in as (Sign out)

Submitting...

An error occurred while saving the comment

Marek Grabarz commented · February 15, 2018 02:22 · Flag as inappropriate

You can easily configure IP restrictions placing APIM in VNET in Internal mode. Then you can route traffic through NSG controlled VIP, applicances, Intranet or WAF.
https://docs.microsoft.com/en-us/azure/api-management/api-management-using-with-internal-vnet

Submitting...
Dan Byrne commented · February 22, 2017 20:20 · Flag as inappropriate

Agreed - this is a high priority requirement.

Submitting...
Dan Byrne commented · February 22, 2017 20:19 · Flag as inappropriate

@Tony B - you can do IP filtering on the API itself using Policies

Submitting...
Pratik Saraogi commented · January 30, 2017 06:07 · Flag as inappropriate

Any updates on this?

Submitting...
Tony B commented · December 30, 2016 08:10 · Flag as inappropriate

Not just Management and Developer Portal but also the API itself.

Submitting...

API Management: Security

Searching…

No results.
Clear search results

Give feedback
- (General Feedback) 4,730 ideas
- ACE Tools 59 ideas
- Additional Services 336 ideas
- Analytics Platform System 14 ideas
- API Apps 2 ideas
- API Management 540 ideas
- Automation 484 ideas
- Azure Active Directory 4,100 ideas
- Azure Active Directory Application Requests 256 ideas
- Azure Advisor 26 ideas
- Azure Analysis Services 162 ideas
- Azure API for FHIR 9 ideas
- Azure App Configuration 31 ideas
- Azure Arc 14 ideas
- Azure Backup 445 ideas
- Azure Blockchain Service 7 ideas
- Azure Bot Service 72 ideas
- Azure Cloud Shell 361 ideas
- Azure Confidential Compute 1 idea
- Azure Container Instances 124 ideas
- Azure Container Registry 75 ideas
- Azure Cosmos DB 210 ideas
- Azure CycleCloud 2 ideas
- Azure Data Explorer 106 ideas
- Azure Data Share 7 ideas
- Azure Database for MariaDB 13 ideas
- Azure Database for MySQL 46 ideas
- Azure Database for PostgreSQL 105 ideas
- Azure Database Migration Service 60 ideas
- Azure Databricks 131 ideas
- Azure Dev Spaces 8 ideas
- Azure Digital Twins 28 ideas
- Azure Event Grid 65 ideas
- Azure FarmBeats 7 ideas
- Azure Functions 199 ideas
- Azure FXT Edge Filer 0 ideas
- Azure Governance 160 ideas
- Azure HPC Cache 0 ideas
- Azure IoT 285 ideas
- Azure IoT Central 133 ideas
- Azure IoT Device Catalog 13 ideas
- Azure IoT Edge 66 ideas
- Azure IoT Security 0 ideas
- Azure IoT Solution Accelerators 43 ideas
- Azure Key Vault 154 ideas
- Azure Kinect DK 48 ideas
- Azure Kubernetes Service (AKS) 221 ideas
- Azure Lighthouse 21 ideas
- Azure Management Groups 25 ideas
- Azure Maps 49 ideas
- Azure Marketplace 411 ideas
- Azure Media Services 225 ideas
- Azure Migrate 48 ideas
- Azure mobile app 221 ideas
- Azure Monitor 171 ideas
- Azure Monitor- Alert Management 131 ideas
- Azure Monitor-Application Insights 673 ideas
- Azure Monitor-Log Analytics 941 ideas
- Azure NetApp Files (ANF) 15 ideas
- Azure Pack 325 ideas
- Azure portal 2,010 ideas
- Azure Red Hat OpenShift 12 ideas
- Azure Remote Rendering 1 idea
- Azure Reservations 188 ideas
- Azure Resource Manager 506 ideas
- Azure Search 255 ideas
- Azure Security Center 238 ideas
- Azure Sentinel 90 ideas
- Azure Service Health 32 ideas
- Azure SignalR Service 14 ideas
- Azure Spatial Anchors 23 ideas
- Azure Sphere 72 ideas
- Azure Spring Cloud 0 ideas
- Azure Stack 181 ideas
- Azure Synapse Analytics 300 ideas
- Azure TCO Calculator 29 ideas
- Azure Time Series Insights 17 ideas
- Batch 33 ideas
- Batch AI 10 ideas
- Biztalk Services 14 ideas
- Blockchain 52 ideas
- Cache 30 ideas
- Change Tracking 11 ideas
- Cloud Services (Web and Worker Role) 289 ideas
- Cost Management 244 ideas
- Cross region move for Azure resources 11 ideas
- Customer Insights 13 ideas
- Customer Lockbox for Microsoft Azure 2 ideas
- Data Catalog 155 ideas
- Data Factory 887 ideas
- Data Lake 351 ideas
- Data Science VM 23 ideas
- Diagnostics and Monitoring 196 ideas
- Event Hubs 34 ideas
- Global Infrastructure 43 ideas
- HDInsight 137 ideas
- Lab Services 294 ideas
- Logic Apps 1,593 ideas
- Machine Learning 158 ideas
- Mobile Engagement 19 ideas
- Networking 1,249 ideas
- Notification Hubs 39 ideas
- Project Bonsai 12 ideas
- Scheduler 42 ideas
- Scripting and Command Line Tools 102 ideas
- SDK and Tools 145 ideas
- Security and Compliance 90 ideas
- Service Bus 196 ideas
- Service Fabric 296 ideas
- Signup and Billing 1,663 ideas
- Site Recovery 274 ideas
- SQL Data Sync 72 ideas
- SQL Database 784 ideas
- SQL Managed Instance 134 ideas
- SQL Server 10,088 ideas
- SQL Server - Big Data Clusters 23 ideas
- Storage 925 ideas
- StorSimple 25 ideas
- Stream Analytics 264 ideas
- Support Feedback 265 ideas
- System Center Data Protection Manager 142 ideas
- Update Management 155 ideas
- Virtual Machines 1,591 ideas
- Web Apps 508 ideas
Microsoft Azure