Hello @Loganathan, Murugesan - Thanks for reaching out!
You'll want to explore the Self-hosted Gateway and look to run it alongside your APIs on-prem. As for authentication, APIM supports various authentication options with OAuth being the preferred one, please review: Authentication and authorization in Azure API Management
On the architecture side of things around the REST APIs needing to be accessible to both Cloud and On-Prem apps, there are also various options available. I'd recommend reviewing the following guides:
- Use Azure API Management with microservices deployed in Azure Kubernetes Service
- The API gateway pattern versus the Direct client-to-microservice communication
I hope this helps, if you have any questions, tag me in the comments below and just let me know.
-------------------------------------------------------------------------------
Please consider contributing to MS Q&A by marking 'Accepted Answer' and ‘Upvoting’ as applicable.