AAD integration for all Teirs
Just because we want a good API interface does not mean we are doing the next Facebook. APIM at Standard level would be, by far, the most expensive component of my entire end to end IoT data platform and includes far more bandwidth than I will likely require. But now you expect me to pay over 4 times as much just to integrate AD for a handful of users?
I will either keep to Developer tier or if that is not sufficient the internal developers can use personal Microsoft accounts. On the bright side, it does eliminate a tie in to the Microsoft platform if centralised identity management is priced out of the realm of feasibility.
Niek Maarse commented
We are building a complete serverless solution on Azure. However We would like to have AAD with apimanagment. Both have a serverless consumptionbased solution. the documentation states the consumptionbased apimanagement does not support AAD.
This is a huge drawback for us to use apimanagement as have AAD integration on apimanagment really is a must for securing our application api's. However the apimanagement Tiers that do support AAD integration are way to expensive to use. The whole idea of serverless is to keep the cost down in case of of low utilization but with the current tier options it rules out apimanagment for us.
Can you add AAD for the consumption tier?
Ian Bennett commented
@Andrew, OAuth is fine if you don't want to provide any user functionality such as per API security, self-service, per user monitoring etc. To do that, you have to either pay a fortune or get your internal users to sign up with personal microsoft accounts which is a bit tacky.
Is it possible to get around this by using OAuth2? https://winterdom.com/2017/11/17/aad-b2c-api-management
Any drawbacks to this? Or am I missing the point?
Andrew Thomas commented
It would be great to be able to use Azure B2c and Azure API management not just at premium tier. You are crippling the product for us that simply can't justify GBP2800 p/m for the API management. Surely the overheads can't be the much more on the basic tier if there is a low usage footprint.
Its one of the only Azure services where you cripple functionality in what appears to be an attempt to get people to the highest level. Most other items are on a consumption based modelling.
Hopefully you see the folly in this.
[Deleted User] commented
This should be available in all tiers. We must have this feature or we are going with Mulesoft!